[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: problem with squid_ldap_auth and OpenLDAP
This log shows the client:
1) performs a search then
2) performs a v2 bind
The server, by default, doesn't accept v2 binds. While
you can enable acceptance (see slapd.conf(5)), it generally
better to use LDAPv3 when possible. I suggest you examine
the documentation for the client to see if it possible to
for it to use LDAPv3 and, if not, work with the developers
to provide LDAPv3 support. LDAPv2 is historic after all.
BTW, as v2 required the first operation to be a bind, so the
behavior shown here is a bit odd. v3 does allow other
operations to come before the bind.
Kurt
At 02:22 PM 9/9/2004, John Von Essen wrote:
>Sep 9 17:12:25 daniel slapd[17757]: connection_get(14): got connid=341
>Sep 9 17:12:25 daniel slapd[17757]: connection_read(14): checking for input on id=341
>Sep 9 17:12:25 daniel slapd[17757]: ber_get_next on fd 14 failed errno=11 (Resource temporarily unavailable)
>Sep 9 17:12:25 daniel slapd[17757]: do_search
>Sep 9 17:12:25 daniel slapd[17757]: >>> dnPrettyNormal: <o=eastern.edu>
>Sep 9 17:12:25 daniel slapd[17757]: <<< dnPrettyNormal: <o=eastern.edu>, <o=eastern.edu>
>Sep 9 17:12:25 daniel slapd[17757]: ==> limits_get: conn=341 op=0 dn="[anonymous]"
>Sep 9 17:12:25 daniel slapd[17757]: => bdb_search
>Sep 9 17:12:25 daniel slapd[17757]: bdb_dn2entry("o=eastern.edu")
>Sep 9 17:12:25 daniel slapd[17757]: search_candidates: base="o=eastern.edu" (0x00000001) scope=2
>Sep 9 17:12:25 daniel slapd[17757]: => bdb_dn2idl( "o=eastern.edu" )
>Sep 9 17:12:25 daniel slapd[17757]: => bdb_equality_candidates (objectClass)
>Sep 9 17:12:25 daniel slapd[17757]: => key_read
>Sep 9 17:12:25 daniel slapd[17757]: <= bdb_index_read: failed (-30990)
>Sep 9 17:12:25 daniel slapd[17757]: <= bdb_equality_candidates: id=0, first=0, last=0
>Sep 9 17:12:25 daniel slapd[17757]: => bdb_equality_candidates (uid)
>Sep 9 17:12:25 daniel slapd[17757]: <= bdb_equality_candidates: (uid) index_param failed (18)
>Sep 9 17:12:25 daniel slapd[17757]: bdb_search_candidates: id=-1 first=1 last=5619
>Sep 9 17:12:28 daniel slapd[17757]: bdb_search: 1 does not match filter
>...
>Sep 9 17:12:28 daniel slapd[17757]: bdb_search: 5619 does not match filter
>Sep 9 17:12:28 daniel slapd[17757]: send_ldap_result: conn=342 op=0 p=3
>Sep 9 17:12:28 daniel slapd[17757]: send_ldap_response: msgid=1 tag=101 err=0
>Sep 9 17:12:28 daniel slapd[17757]: connection_get(14): got connid=342
>Sep 9 17:12:28 daniel slapd[17757]: connection_read(14): checking for input on id=342
>Sep 9 17:12:28 daniel slapd[17757]: ber_get_next on fd 14 failed errno=11 (Resource temporarily unavailable)
>Sep 9 17:12:28 daniel slapd[17757]: do_bind
>Sep 9 17:12:28 daniel slapd[17757]: >>> dnPrettyNormal: <uid=bob,ou=college,ou=staff,ou=people,o=eastern.edu>
>Sep 9 17:12:28 daniel slapd[17757]: <<< dnPrettyNormal: <uid=bob,ou=college,ou=staff,ou=people,o=eastern.edu>, <uid=bob,ou=college,ou=staff,ou=people,o=eastern.edu>
>Sep 9 17:12:28 daniel slapd[17757]: do_bind: version=2 dn="uid=bob,ou=college,ou=staff,ou=people,o=eastern.edu" method=128
>Sep 9 17:12:28 daniel slapd[17757]: send_ldap_result: conn=342 op=1 p=2
>Sep 9 17:12:28 daniel slapd[17757]: send_ldap_response: msgid=2 tag=97 err=2
>Sep 9 17:12:28 daniel slapd[17757]: connection_get(14): got connid=342
>Sep 9 17:12:28 daniel slapd[17757]: connection_read(14): checking for input on id=342
>Sep 9 17:12:28 daniel slapd[17757]: ber_get_next on fd 14 failed errno=0 (Error 0)
>Sep 9 17:12:28 daniel slapd[17757]: connection_read(14): input error=-2 id=342, closing.
>Sep 9 17:12:28 daniel slapd[17757]: connection_closing: readying conn=342 sd=14 for close
>Sep 9 17:12:28 daniel slapd[17757]: connection_close: deferring conn=342 sd=14
>Sep 9 17:12:28 daniel slapd[17757]: do_unbind
>Sep 9 17:12:28 daniel slapd[17757]: connection_resched: attempting closing conn=342 sd=14
>Sep 9 17:12:28 daniel slapd[17757]: connection_close: conn=342 sd=14
>
>Anyone have any ideas? Thanks
>John