LDAP Technical Specifications
62
•
Advanced Operations
Sentry PT22
Simple Bind Authentication Process
LDAP Server
Sentry
Client
Initiate Sentry
session
Authentication
request with
Usename/
Password
Successful
Bind?
Username
found?
Successful
Bind?
Attribute
match?
Username
found?
Attribute name
compared to
Group
Membership
Attribute
Subtree search
starting from
User Search Base
DN with User
Search Filter
Prompt for login
credentials
Simple Bind using
User FQDN and
login password
Simple bind using
Search Bind
DN & Password
Subtree search
starting from
User Search Base
DN with User
Search Filter
MD5 Bind Authentication Process
Sentry
LDAP Server
Client
Access Granted
Username groups
access rights
compared against
Sentry LDAP
groups
Access Denied
Username groups
access rights
compared against
Sentry LDAP
groups
Group
match?
Access Granted
Access Denied
Initiate Sentry
session
Group
match?
SASL Digest-MD5
bind using
uppercase
username &
entered password
Subtree search
starting from
User Search Base
DN with User
Search Filter
Prompt for login
credentials
Attribute name
compared to
Group
Membership
Attribute
Attribute
match?
Authentication
request with
Usename/
Password
Successful
Bind?
Username
found?
Installation and Operations Manual
Summary of Contents for Sentry PT22
Page 44: ......