[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: rootDSE

To: "'openldap-software@openldap.org'" <openldap-software@OpenLDAP.org>
Subject: RE: rootDSE
From: Igor Brezac <igor@ipass.net>
Date: Fri, 8 Sep 2000 11:04:48 -0400 (EDT)
Cc: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>, Gary Williams <Gary.Williams@sas.com>
In-reply-to: <DB8AFFD38A30D311BA6D0090276DC8C001F9D139@merc09.us.sas.com>

You are correct.  The client is not requesting namingcontexts explicitely. 
It is interesting that the client explicitely requested supportedControl,
but not namingContexts.  This is obviously a solaris 8 ldapclient bug.  I
hate to do this, but my best bet is to change the opanldap server to
return namingContexts.  Solaris may not fix this problem for some time.

-Igor

On Fri, 8 Sep 2000, Gary Williams wrote:

> Date: Fri, 8 Sep 2000 07:11:19 -0400 
> From: Gary Williams <Gary.Williams@sas.com>
> To: 'Igor Brezac' <igor@ipass.net>
> Cc: "'openldap-software@openldap.org'" <openldap-software@openldap.org>
> Subject: RE: rootDSE
> 
> try:
> ldapsearch -b "" -s base 'objectclass=*'
> 
> this limits the scope of the search to the base DN.  You have
> to specify this to get the Root DSE.  I think the crux of your
> problem may be that the Netscape server returns the NamingContexts
> attribute with the Root DSE.  When you query OpenLDAP, you have
> to ask for the NamingContexts attribute explicitly.  Since it's
> an operational attribute, this is how it's supposed to be.
> If your client looks for the naming contexts without asking for
> them, all you can do to make OpenLDAP work for you is change the
> client, or change the OpenLDAP server to return the NamingContexts
> by default.
> 
> 
> > -----Original Message-----
> > From: Igor Brezac [mailto:igor@ipass.net]
> > Sent: Friday, September 08, 2000 1:56 AM
> > To: openldap-software@OpenLDAP.org
> > Cc: Kurt D. Zeilenga
> > Subject: Re: rootDSE
> > 
> > 
> > 
> > 
> > On Thu, 7 Sep 2000, Kurt D. Zeilenga wrote:
> > 
> > > >Solaris 8 has a native support for nss_ldap and it works 
> > correctly, at
> > > >least it does with the netscape directory server.  I'd like to use
> > > >OpenLDAP instead. :)  The program that initialises ldap 
> > client machines
> > > >(ldapclient) retrieves information from the root DSE.
> > > 
> > > Hopefully it's using the root DSE to discover the supported
> > > features so that it can optimize it's use of LDAP...
> > >
> > 
> > Yup.  The client reports that it finds 0 namingcontexts.  It uses the
> > value of this attribute to set the baseDN (I believe).  Is it 
> > possible to
> > query the root DSE?  ldapsearch -x -b '' 'objectclass=*' does 
> > not return
> > anything.
> > Thanks.
> > -Igor
> > 
>

References:
- RE: rootDSE
  - From: Gary Williams <Gary.Williams@sas.com>

Prev by Date: Re: Netscape Roaming Profile for OpenLDAP v2
Next by Date: Info on Netmeeting
Index(es):
- Chronological
- Thread