[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: openldap V2.1.n and referral
To me, it looks like ldapEss has no referral objects.
I also note that auth_ldap is using LDAPv2 which technically
doesn't support referrals... and the LDAPv2+ stuff U-Mich
developed is significantly flawed. I suggest you update
auth_ldap to use LDAPv3.
Kurt
At 11:14 PM 2002-10-23, Vincent MATHIEU wrote:
>A 12:39 22/10/02 -0700, vous avez écrit :
>>At 01:27 AM 2002-10-22, Vincent MATHIEU wrote:
>>>The real command was :
>>>ldapsearch -x -C -H ldap://servetud.univ-nancy2.fr:396 -s sub -b dc=univ-nancy2,dc=fr -P 3 "(uid=vmath999)"
>>
>>You likely should test without -C... otherwise you confuse
>>return of referrals (or references) with chasing of referrals
>>(or references). Use -M to see what referral objects exist.
>>Use no -M (and no -C) to see how those referral objects cause
>>referrals/references to be returned. Note that, when using
>>-M, you should specify a filter which will match the referral
>>object, e.g. (|(objectClass=referral)(uid=vmath999)), otherwise
>>they won't be returned.
>
>That's rigth.
>
>But It does'nt work with auth-ldap V1.6
>
>with openldap V2.1 (loglevel : 768) :
>AuthLDAPURL ldap://servetud.univ-nancy2.fr:390/dc=univ-nancy2,dc=fr?uid?sub?(objectClass=*)
>
>Oct 23 18:04:42 servetud ldapEss[3387]: daemon: conn=1 fd=12 connection from IP=194.214.218.198:3719 (IP=0.0.0.0:390) accepted.
>Oct 23 18:04:42 servetud ldapEss[3391]: conn=1 op=0 BIND dn="" method=128
>Oct 23 18:04:42 servetud ldapEss[3391]: conn=1 op=0 RESULT tag=97 err=0 text=
>Oct 23 18:04:42 servetud ldapEss[3391]: conn=1 op=1 SRCH base="dc=univ-nancy2,dc=fr" scope=2 filter="(&(objectClass=*)(uid=vmathieu))"
>Oct 23 18:04:42 servetud ldapEss[3391]: conn=1 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
>
>
>And openldap V2.0.8 :
>AuthLDAPURL ldap://etudiant.univ-nancy2.fr:390/dc=univ-nancy2,dc=fr?uid?sub?(objectClass=*)
>
>Oct 23 18:14:14 etudiant ldapReferral[18518]: daemon: conn=0 fd=9 connection from IP=194.214.218.198:4643 (IP=0.0.0.0:390) accepted.
>Oct 23 18:14:14 etudiant ldapReferral[18554]: conn=0 op=0 BIND dn="" method=128
>Oct 23 18:14:14 etudiant ldapReferral[18554]: conn=0 op=0 RESULT tag=97 err=0 text=
>Oct 23 18:14:14 etudiant ldapReferral[18554]: conn=0 op=1 SRCH base="dc=univ-nancy2,dc=fr" scope=2 filter="(&(objectClass=*)(uid=vmathieu))"
>Oct 23 18:14:14 etudiant ldapReferral[18554]: conn=0 op=1 SEARCH RESULT tag=101 err=9 text=Referral: ldap://ldap2.etudiant.univ-nancy2.fr:392 ldap://ldap2.univ-nancy2.fr:392
>Oct 23 18:14:14 etudiant ldapReferral[18554]: conn=0 op=2 BIND dn="UID=VMATHIEU,OU=PEOPLE,OU=PERS,DC=UNIV-NANCY2,DC=FR" method=128
>Oct 23 18:14:14 etudiant ldapReferral[18554]: conn=0 op=2 RESULT tag=97 err=9 text=Referral: ldap://ldap2.univ-nancy2.fr:392
>Oct 23 18:14:14 etudiant ldapReferral[18554]: conn=0 op=3 BIND dn="" method=128
>Oct 23 18:14:14 etudiant ldapReferral[18554]: conn=0 op=3 RESULT tag=97 err=0 text=
>Oct 23 18:14:14 etudiant ldapReferral[18518]: deferring operation
>
>I suppose that the problem comes from auth-ldap?
>
>
>Thank's
>
>Vincent
>
>--
>Vincent MATHIEU
>CRI - Universite NANCY 2 | Email : Vincent.Mathieu@univ-nancy2.fr
>Pole Lorrain de Gestion | Tel : (33) 03.83.39.64.06
>13, Rue Michel Ney - C.O. 75 | Fax : (33) 03.83.39.64.43
>54013 Nancy Cedex. FRANCE