[Date Prev][Date Next] [Chronological] [Thread] [Top]

User Authentication

Hi OpenLDAP users/developers:

I have successfully set up OpenLDAP on my server. It's purpose will be
to serve addresses through Netscape Messenger on our intranet. This
works fine, but: I want to set up user authentication. I mean the NEED
for Netscape to log in to OpenLDAP before it can view any records (_not_
login auth via LDAP!). OK, my access rules are the following:

--- CUT ---

defaultaccess   none

access to attr=userpassword
        by self write
        by * none

access to *
        by self write
        by dn=".+" read
        by * none

--- CUT ---

OK. Now no user can see anything. Exactly what should happen, to an
_un_autorized user. Now: How/Where do I have to create the records for
the users that should be able to login? I tried the following ldif:

--- CUT ---

dn: uid=tim,dc=niemueller,dc=de
objectClass: person
objectClass: inetOrgPerson
objectClass: organizationalPerson
cn: Tim Niemueller
sn: Niemueller
givenName: Tim
uid: tim
mail: tim@niemueller.de
l: City
st: State
postalCode: 88888
street: Streetname 4
telephonenumber: 01234/56789
userpassword: mysecretpassword

--- CUT ---

The password is not encrypted. Can/Must I do this somehow?

After that I set Netscape to use User/Pass Authentication. I entered tim
as user and mysecretpassword as password. I got "Referral hop limit
exceeded (0x61)". But I have not set any referrals!

What is this SASL stuff for?

Any help to get this done would be greatly appreciated.

Thanx in advance,


    Tim Niemueller <tim@niemueller.de>      www.niemueller.de
 Imagination is more important than knowledge. (Albert Einstein)