[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Eudora 4.2 and openldap authentication not working

To: Jeff Clowser <jclowser@aerotek.com>
Subject: Re: Eudora 4.2 and openldap authentication not working
From: Joe Novielli <jnoviell@matrox.com>
Date: Fri, 09 Jul 1999 12:42:10 -0400
Cc: openldap-software@OpenLDAP.org
In-reply-to: <378615A6.DF57C7E0@aerotek.com>
References: <4.2.0.58.19990708152516.03e1b350@coyote.matrox.com>

My ldif file entries all look like:

dn: cn=jnoviell, location=Dorval, o=Matrox,c=CA
objectclass: Person
username: jnoviell
cn: Joe Novielli
mail: jnoviell@matrox.com
location: Dorval
givenname: Joe
sn: Novielli
userPassword: {crypt}DhdfFKoszdfrE
telephoneNumber: xxx-xxx-xxxx  ext: 0077
status: Active User

My member entry (those users that can access our  ldap server) looks like this:

dn: cn=people_who_have_access,o=Matrox,c=CA
objectclass: groupOfnames
objectclass: top
member: cn=jnoviell,location=Dorval,o=Matrox,c=CA
member: cn=other_guy,location=Dorval,o=Matrox,c=CA
cn: people_who_have_access


My ACL looks like this:

access to attr=userpassword
 by * compare

access to *
 by group="cn=people_who_have_access,o=Matrox,c=CA" read
 by * none

------------------------------------
Strange that it worked fine in 4.01 and not in 4.2.

Am I missing something???

My Eudora 4.2 has the following 2 options:

1) Word-wise Search Filter: (default is: (cn=*^0*)  )

2) Whole-query Search Filter:  (default is blank)

At 11:30 AM 07/09/99 -0400, you wrote:

What's the record look like, and what are your access restrictions?
Looks like in the first, you bind as a user, but in the second,
Eudora is only binding as anonymous, so if for some reason
anonymous can't read the cn field, that could be it.  Also,
the first looks at cn, givenname, and sn.  The second only
looks at the cn attribute.  Normally I would expect cn would be
a combination of givenname and sn, but it doesn't have to be.
The first (access control issues) could just be a matter of your
Eudora configuration, while the second looks like a change in the
behaviour of Eudora.
Joe Novielli wrote:
> Greetings all, > > I use to have Eudora 4.01 configure to use my ldap server with > authentication to retrieve my info. > > All worked well, until I upgrade to Eudora 4.2. > > My ldap log files looks like this: > > 1) Good search for "Matt" (using Eudora 4.02): > > Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=135 op=1 RESULT err=0 > tag=101 nentries=0 > Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=136 fd=14 connection > from dyn-2-30.matrox.com (192.168.2.180) accepted. > Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=135 op=-1 fd=6 closed > errno=0 > Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=136 op=0 BIND > dn="CN=JNOVIELL,LOCATION=DORVAL,O=MATROX,C=CA" method=128 > Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=136 op=0 RESULT err=0 > tag=97 nentries=0 > Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=136 op=1 SRCH > base="LOCATION=DORVAL,O=MATROX,C=CA" scope=2 > filter="(|(cn=MATT*)(givenname=MATT*)(sn=MATT*))" > Jul 7 12:15:32 pluton.matrox.com slapd[15816]: conn=136 op=1 RESULT err=0 > tag=101 nentries=3 > Jul 7 12:15:32 pluton.matrox.com slapd[15816]: conn=136 op=-1 fd=14 closed > errno=0 > > 2) Using Eudora 4.2 searching for "Matt" yields: > > Jul 8 15:50:42 pluton.matrox.com slapd[15816]: conn=177 fd=6 connection > from dyn-2-30.matrox.com (192.168.2.180) accepted. > Jul 8 15:50:42 pluton.matrox.com slapd[15816]: conn=177 op=0 BIND dn="" > method=128 > Jul 8 15:50:42 pluton.matrox.com slapd[15816]: conn=177 op=0 RESULT err=0 > tag=97 nentries=0 > Jul 8 15:50:42 pluton.matrox.com slapd[15816]: conn=177 op=1 SRCH > base="LOCATION=DORVAL,O=MATROX,C=CA" scope=2 filter="(cn=*MATT*)" > Jul 8 15:50:47 pluton.matrox.com slapd[15816]: conn=177 op=1 RESULT err=0 > tag=101 nentries=0 > Jul 8 15:50:47 pluton.matrox.com slapd[15816]: conn=177 op=3 UNBIND > Jul 8 15:50:47 pluton.matrox.com slapd[15816]: conn=177 op=3 fd=6 closed > errno=0 > > ---------------------------------------------------------------------------- > ------------------------------------------------- > > Is this a problem with the newer version of Eudora or ???? > > Any suggestions would be appreciated, as users tend to upgrade to the > latest thing. > > I'm running openLDAP 1.2.2 on Solaris 2.6 with UNIX passwords style > authentication .
--
 Jeff Clowser
 mailto:jclowser@aerotek.com       Hanover MD  21076 USA
 Phone: (410)-579-4328             7312 Parkway Drive


--------------------------------------------------------------------------
Joe Novielli  x.7703  Email: jnoviell@matrox.com
MIS Department
Matrox Electronic Systems Inc. http://www.matrox.com
1055 St-Régis Tel: (514) 822-6000  x. 7703
Dorval, Québec Fax: (514) 822-6262
Canada, H9P 2T4
--------------------------------------------------------------------------

References:
- Eudora 4.2 and openldap authentication not working
  - From: Joe Novielli <jnoviell@matrox.com>
- Re: Eudora 4.2 and openldap authentication not working
  - From: Jeff Clowser <jclowser@aerotek.com>

Prev by Date: Setting up LDAP as directory server for MS NetMeeting?
Next by Date: need examples in ADSI/ASP (NT)
Index(es):
- Chronological
- Thread