Is there a way (SQL Anywhere v11) to allow a custom authentication?
I'd like to allow a userid and password to be authenticated via LDAP.
Since the LDAP users can change daily it would be ideal if the Sybase user did not have to exist prior to the login. It's too much overhead to maintain users in both databases. I'd like to either add a user at that point or simply set all the "permissions and authorities" and move on.
I looked into the login_procedure option but it looks like at that point the connection has already been authenticated and the only option is to cancel.
Thank you for any suggestions.
Update: LDAP user authentication is now supported as of SQL Anywhere version 16.0.0. Documentation is here.
You may be able to accomplish what you want using either Integrated Login or Kerberos support. Basically, depending on the configuration, they can authenticate the user logged into the Windows OS or Kerberos system (which includes Windows ActiveDirectory) and allow the user to login to the server without supplying a userid or password (instead the system passes and verifies their OS user credentials). You need to setup a mapping for each OS/Kerberos user or create the special guest database user as a catch-all for users that don't have explicit mappings.
See Integrated logins and Kerberos in the documentation for more info.