[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SASL and mail attribute help

To: Al Pacifico <pacifico@drizzle.com>
Subject: Re: SASL and mail attribute help
From: Michael Ströder <michael@stroeder.com>
Date: Wed, 01 Jun 2005 20:15:18 +0200
Cc: OpenLDAP-software@OpenLDAP.org
In-reply-to: <429DFA0E.3050903@stroeder.com>
References: <013801c566d1$3b153210$337ba8c0@Laptop8100> <429DFA0E.3050903@stroeder.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050511

Michael Ströder wrote:
> Al Pacifico wrote:
> 
>>The examples at OpenLDAP show use of the uid attribute, which is not present
>>for all entries in my directory. I'm not sure how to map to the correct
>>authentication request DN.
> 
> 
> Simply fill the attribute uid of all entries by assigning each user who
> has to bind to OpenLDAP a unique user name.
> Or use another unique attribute like 'employeeNumber'.

Sorry, got you wrong.

What you're probably after is (example not tested!):

sasl-regexp
"uid=([a-zA-Z0-9]+),cn=(digest-md5|cram-md5|ntlm|plain|login|gssapi),cn=auth"
  "ldap:///dc=stroeder,dc=com??sub?(mail=$1)"

Note 'mail=$' in the LDAP URL.

Ciao, Michael

Follow-Ups:
- RE: SASL and mail attribute help
  - From: "Al Pacifico" <pacifico@drizzle.com>

References:
- SASL and mail attribute help
  - From: "Al Pacifico" <pacifico@drizzle.com>
- Re: SASL and mail attribute help
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: SASL and mail attribute help
Next by Date: Re: SASL and mail attribute help
Index(es):
- Chronological
- Thread