We are under lsf 9.0.0.0 and have been attempting to bind to our corporate Active Directory. We discovered we can only bind using the CN attribute and all attempts to override to another variable fail. The Microsoft default for this is the persons full name which really doesn't work for binding purposes (for example, a "Joe Smith" common name in AD binding to Lawson id "JOES").

I have been assured by Lawson that many installations are authenticating with extenal LDAPs just fine so I am curious....
1) What are you binding to and did you find you had to upgrade to Service Pack 2 before it worked.
2) Anyone bind to Active Directory? If so, how did you accomplish?

One extra point - as a publi compnay we are held to SOX rules so strong password strong are critical.

thanks for any feedback.

Several of my associates (I work for Lawson) have done successful binds to AD for clients, usually through ADAM. I'm working long-term at an 8.0.3 client currently so I've not had a chance to do one yet.

I understand that it IS possible to bind a pre-SP2 system, but you can only bind to a single tree. I BELIEVE that limitation is lifted with SP2.

Note, I'm sure you've done this already, but be SURE you backup your LDAP instance and dump the data to ldif format BEFORE you attempt a bind. If it doesn't work you'll need that to recover your LDAP.

g'luck!