RE: shortname & DWA login issues (inconsistent) Phil Engen 25.Jun.07 05:56 PM a Web browser Domino Web Access 7.0.2 FP2Solaris
Starting with Domino 6, an ambiguous authentication (therefore, no authentication) will result if a username and password pair matches in both the primary and secondary authentication servers.
Domino Shortname = LDAP UID = username1
Domino password = password1, LDAP password = pswd1
This user will be able to authenticate against Domino successfully
Domino Shortname = LDAP UID = username2
Domino password = password2, LDAP password = password2
This user will NOT be able to authenticate against a Domino server that is using Directory assistance to the LDAP directory.
The workaround I used for this was to direct users to a primary server that does not use directory assistance and when the authentication fails, I pass them to a second server that uses directory assistance to LDAP to try again. This way the user only gets to the Dirassist server when the password doesn't match the Domino password. Yes, this was a lot of work. We requested an enhancement that would allow us to specify that the Domino server authentication be treated as authoritative like it was in R5 but I don't think it has been added as of R7. I haven't checked 8.