OpenLDAP
Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest

Viewing Incoming/6557
Full headers

From: jet@hf.webex.com
Subject: SECURITY: About Referrals and BIND
 Compose comment
Download message
State:
1 replies: 1
0 followups:

Major security issue: yes  no

Notes:

Notification: 


Date: Mon, 24 May 2010 03:26:26 +0000
From: jet@hf.webex.com
To: openldap-its@OpenLDAP.org
Subject: SECURITY: About Referrals and BIND

Full_Name: Jet Du
Version: openldap-2.4.21
OS: Linux
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (61.191.27.34)


There are two openLDAP Directory.

10.224.39.165 openLDAP has suffix dc=cisco,dc=webex
10.224.39.172 openLDAP has suffix dc=webex,dc=webex 

In 10.224.39.172 OpenLDAP, I configure referral in slapd.conf like below:
    referral        ldap://10.224.39.165:389/

Connect 10.224.39.172 to BIND entry existing in 10.224.39.165. Code like
following:
    lc.connect("10.224.39.172", 389);
    lc.bind(LDAPConnection.LDAP_V3,
"uid=xxx@hf.cisco.com,ou=People,dc=cisco,dc=com", "pass".getBytes("UTF8"));

But, I can not BIND successfully. Exception like below:
    Connect ERRORLDAPException: Invalid Credentials (49) Invalid Credentials
    LDAPException: Matched DN: ......

How to do BIND based on Referral? Thanks ...

Reply 1

Resend
From: Kurt Zeilenga <openldap-its@OpenLDAP.org>
To: jet@hf.webex.com
Subject: Re: (ITS#6557) SECURITY: About Referrals and BIND
Date: Tue May 25 07:19:22 2010

please take OpenLDAP Software use questions to the OpenLDAP-technical mailing
list.   This issue report 
will be closed.
Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest

The OpenLDAP Issue Tracking System uses a hacked version of JitterBug

______________
© Copyright 2013, OpenLDAP Foundation, info@OpenLDAP.org