i have a Saas application that i need it's users to authenticate against the customer's AD.
i have a local(in the customer's domain) agent that does an LDAP authentication against the AD.
the problem is that i want to establish some kind of API against this agent that sends to the agent the user& password of the end user ,
and gets a response if this user is authenticated against the AD.
i prefer it to be without opening the customer's firewall to open port for this API.
i understood that there is a possibility of COMET, long-polling or websocket in the customer web application, to open a connection from the customer side, and the API will connect to it when he needs.
i couldn't find any good, simple and scaleble example of such a use .
i'll be happy if anyone can advise on this issue.