Using native authentication with web servers

Many web servers provide a user ID and password challenge for authentication. These can take advantage of native authentication. The web server must be configured to do LDAP authentication. When the challenge to do LDAP authentication is presented, the user can enter the Security Server user ID and password or password phrase (from the system where the LDAP server is running). The web server searches the LDAP directory for an entry where uid equals the input user ID. The web server uses the returned DN and the inputted password or password phrase to do an ldap_simple_bind(). When the LDAP server determines this entry is subject to native authentication, it retrieves the ibm-nativeId or uid value and verify the password or password phrase with the Security Server. Note that if useNativeAuth is set to selected, it might be necessary to place the Security Server user ID into both the uid and ibm-nativeId attributes of this entry to allow the web server processing to work correctly with native authentication.