ACME LDAP

An extension to OpenLDAP that allows OpenVMS users to extend single sign-on procedures to include OpenVMS hosts and manage user accounts in a centralized directory.

ACME LDAP Logo

ACME LDAP for VSI OpenVMS combines the Lightweight Directory Access Protocol (LDAP) with the VSI OpenVMS Authentication and Credentials Management Extension (ACME) authentication mechanism to provide a solution that allows VSI OpenVMS customers to extend single sign-on procedures to include OpenVMS hosts and manage user accounts in a centralized directory.

The ACME LDAP agent for VSI OpenVMS provides "simple bind" authentication during login using an LDAP-compliant directory server, such as a Microsoft Active Directory domain controller or an OpenLDAP server. In this authentication method, users enter the user ID and password of their LDAP directory account when accessing the OpenVMS host.

When successfully authenticated, the external user ID is mapped to the appropriate OpenVMS username and the correct user profile is obtained.

The ACME LDAP agent supports logins from multiple user domains and provides multiple mechanisms to map domain usernames to OpenVMS usernames.

Secure Socket Layer (SSL)/Transport Layer Security (TLS) LDAP communication is supported to prevent user IDs and clear-text passwords from being exposed over the network.

For more information about the ACME server and agents, particularly if you plan to use external authentication with DECnet applications on systems running DECnet-Plus, see the section “Enabling External Authentication” in the VSI OpenVMS Guide to System Security

Software Requirements

Latest Version

2.0-1B

Download

VSI-AXPVMS-ACMELDAP-V0200-1B-1-RNOTES.PDF

VSI-AXPVMS-ACMELDAP-V0200-1B-1.ZIPEXE

VSI-I64VMS-ACMELDAP-V0200-1B-1-RNOTES.PDF

VSI-I64VMS-ACMELDAP-V0200-1B-1.ZIPEXE

Licensing

VSI proprietary free product

Documentation

Discussion

OpenLDAP Forum