[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: auth works with cn=My Name but not with uid=myname

To: Arne Schirmacher <nn4l@yahoo.de>
Subject: Re: auth works with cn=My Name but not with uid=myname
From: Michael Ströder <michael@stroeder.com>
Date: Wed, 15 Jul 2009 15:11:05 +0200
Cc: openldap-technical@openldap.org
In-reply-to: <717234.5333.qm@web26001.mail.ukl.yahoo.com>
References: <717234.5333.qm@web26001.mail.ukl.yahoo.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22) Gecko/20090606 SeaMonkey/1.1.17

Arne Schirmacher wrote:
> This is probably trivial but I can't figure it out:
> 
> my OpenLDAP entry has an attribute of cn=My Name, an attribute of uid=myname and a password.
> 
> I can successfully log in using JXplorer using
> 
> cn=My Name,ou=people,o=my company
> 
> but not using
> 
> uid=myname,ou=people,o=my company (error code 49 - Invalid Credentials)
> 
> However searching with that dn is successful and returns 1 entry, so the uid attribute is in fact there.

You have to simply use the DN of an existing entry within a simple bind
request. So if your entry looks like

dn: cn=My Name,ou=people,o=my company
objectClass: inetOrgPerson
cn: My Name
uid: myname

you have to use cn=My Name,ou=people,o=my company as bind-DN. Most
LDAP-enabled software which checks username/password with a simple bind
request first searches for the entry with filter (uid=username) and then
uses the DN of the entry found as bind-DN.

Ciao, Michael.

-- 
Michael Ströder
E-Mail: michael@stroeder.com
http://www.stroeder.com

References:
- auth works with cn=My Name but not with uid=myname
  - From: Arne Schirmacher <nn4l@yahoo.de>

Prev by Date: auth works with cn=My Name but not with uid=myname
Next by Date: Re: auth works with cn=My Name but not with uid=myname
Index(es):
- Chronological
- Thread