[Date Prev][Date Next]
Re: Auth failing!
> We are using old OpenLDAP 1.2.11 for authentication purpose.
> Some user are recognized, others give that result in log file:
> Nov 22 11:00:35 myldapserver slapd: conn=4 fd=10 connection
> from localhost (127.0.0.1) accepted.
> Nov 22 11:00:35 myldapserver slapd: conn=4 op=0 BIND
> dn="CN=FIORI RAFFAELLA (R.FIORI),OU=EMPLOYEE,OU=PEOPLE,O=MYFARM,C=IT"
Just as a wild guess, try it with a DN that doesn't have parenthesis in it.
I don't know if this is legal, but if that DN is cranking through regex
code somewhere, the parenthesis are going to cause problems. You could also
try escaping them.
> Nov 22 11:00:35 myldapserver slapd: conn=4 op=0 RESULT err=49
> tag=97 nentries=0
> Nov 22 11:00:35 myldapserver slapd: conn=4 op=-1 fd=10 closed
> Nov 22 11:00:42 myldapserver slapd: conn=1 op=2 UNBIND
> Nov 22 11:00:42 myldapserver slapd: conn=1 op=-1 fd=7 closed
> In this example, I'm using
> ldapadd -D "CN=FIORI RAFFAELLA (R.FIORI),OU=EMPLOYEE,OU=PEOPLE,O=MYFARM,C=IT" -W
> which respond with "ldap_bind: Invalid credentials".
> I'm *REALLY* sure I'm using the right password and the right DN.
> We have tried even with plain ASCII password in the directory.
> Someone can use its password, someone can't. Why? :?
> Ph'nglui mglw'nafh Cthulhu http://www.rlyeh.it/ wgah'nagl fhtgan!