[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ACL's for SASL compat.


	It got it to work _BUT_ only if I have:

by dn="uid=.+\+realm=schoenberg" write

Could this be a bug? If I use "by dn="uid=testuser\+realm=schoenberg"
write" it fals with the same insufficient access error.. my authzdn in
the trace is clearly "uid=testuser + realm=schoenberg". BTW, -O
maxbufsize=0 does not make a difference for the error when using



"Kurt D. Zeilenga" wrote:
> At 04:35 PM 10/6/00 -0400, Marc Heckmann wrote:
> >I get a "Can't contact ldap server" error"
> That's a bug which I'm working on fixing... disable layers
> to workaround (e.g.: -O maxbufsize=0).
> >here is the trace:
> >
> >Oct  6 16:31:49 schoenberg slapd[9297]: do_bind
> >Oct  6 16:31:49 schoenberg slapd[9297]: do_sasl_bind: dn () mech DIGEST-MD5
> >Oct  6 16:31:50 schoenberg slapd[9297]: SASL Authorize [conn=1]: "testuser" as "u:testuser"
> >Oct  6 16:31:50 schoenberg slapd[9297]: slap_sasl_bind: username="u:testuser" realm="schoenberg" ssf=128
> >Oct  6 16:31:50 schoenberg slapd[9297]: <== slap_sasl_bind: authzdn: "uid=testuser + realm=schoenberg"