AD servers allow users to login w/o a DN by allowing them to specify just the username instead. This is not standards compliant but some clients (appliances) seem to like to use this method.
Possible patch 0001-Support-AD-style-LDAP-Binds.patch
For this patch to work this ticket in 389ds needs to be fixed first: https://fedorahosted.org/389/ticket/48272
note that Ad accepts only fully qualified names like: NETBIOS\Username, we should probably do the same
Metadata Update from @simo: - Issue assigned to someone - Issue set to the milestone: FreeIPA 4.5 backlog
Login to comment on this ticket.