Synching between eDirectory and BorderManager trees
Novell Cool Solutions: Question & Answer
Reader Rating 
Q:
I need to be able to authenticate users from the main tree to a BM server
set up in a diffent tree for Proxy Authentication.
A:
With the BorderManager server in its own tree, you can use IDM's edir-to-edir driver to sync accounts and passwords between the main tree and the BorderManager tree. That's the first step.
Then you can use BorderManager's "client trust" to provide outbound
authenticated access through the NBM server. That requires that the user be
logged in to the tree where BorderManager is running. The easiest way to do that is to put a "map n bmtree/bmserver/sys:public" statement into the login script, which will cause the client to attach to the server in the NBM tree. If the user/password is the same, it'll be done quietly, without having to prompt the user for credentials.
Once the user is logged in to both trees, then "client trust" will allow them
out to the world beyond the NBM server.
Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com