Red Hat Bugzilla – Bug 535603
LDAP case insensitive authentication may lead to unwanted users
Last modified: 2011-05-13 14:53:38 EDT
LDAP authentication may be case insensitive whereas jon usernames are case sesnsitive. So, a single LDAP username, say 'user1' may pass a login check for 'user1', 'User1', 'USER1', etc. But, each of these variations will look like a different user to RHQ and each will ask to be registered separately upon successful LDAP authentication.
Perhaps for LDAP we should allow only one case-specific entry. Meaning, if we invoke LDAP authentication, and it succeeds, check the RHQ db for the username in a case-insensitive way. If there is a match, change the entered username to the existing entry and continue with the session.
This bug was previously known as http://jira.rhq-project.org/browse/RHQ-2281
mass add of key word FutureFeature to help track
This issue should be closed. Is a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=586435 which was already addressed/closed.
Closing as has already been addressed.