[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Invalid Credentials error for a Bind DN with spl. character



[I assume you intended to post to the list as well.]

> You can see what openLDAP is getting for anonymous search and bind dn
> request:
>
> conn=0 fd=1216 ACCEPT from IP=127.0.0.1:3390 (IP=0.0.0.0:389)
> conn=0 op=0 BIND dn="" method=128
> connection_input: conn=0 deferring operation: binding
> conn=0 op=0 RESULT tag=97 err=0 text=
> conn=0 op=1 SRCH base="o=VeriSign\2C Inc.,c=US" scope=2 deref=0
> filter="(objectClass=*)"
> conn=0 op=2 UNBIND
> conn=0 op=1 SEARCH RESULT tag=101 err=32 nentries=0 text=

^^^ err=32 (noSuchObject): no data exists with that DN

> conn=0 fd=1216 closed
> conn=1 fd=1216 ACCEPT from IP=127.0.0.1:3393 (IP=0.0.0.0:389)
> conn=1 op=0 BIND dn="cn=Manager,o=VeriSign\2C Inc.,c=US" method=128
> conn=1 op=0 RESULT tag=97 err=49 text=

^^^ err=49 (invalidCredentials): can be anything, from invalid credentials
(e.g. wrong password) to many other errors.  In any case, it appears that
the DN is parsed correctly.  I don't see any evidence of an error in
treating it.  I suggest you use a more verbose log level, in an attempt to
find out what's really going on in there.  An indication of the version of
OpenLDAP you're using may be of help.

p.

-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it


    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497