[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: search for a user by cn or uid

To: "David Young" <dyoung@nettonettech.com>, <openldap-software@OpenLDAP.org>
Subject: RE: search for a user by cn or uid
From: "David Parker" <dparker@ebt.com>
Date: Thu, 3 May 2001 09:12:34 -0400
Importance: Normal
In-reply-to: <006e01c0d34c$f053c190$34fea8c0@DYOUNG>

Thanks. I didn't know about slapcat. A cool tool with a cool name....
Anyway, the person entries WERE getting created - it turns out I had my ACLs
set incorrectly for the sub-tree my users were in and I wasn't giving read
access. Once I fixed that I was able to see them.

Thanks again.

- DAP

> -----Original Message-----
> From: owner-openldap-software@openldap.org
> [mailto:owner-openldap-software@openldap.org]On Behalf Of David Young
> Sent: Wednesday, May 02, 2001 5:15 PM
> To: openldap-software@openldap.org
> Subject: Re: search for a user by cn or uid
>
>
> Try doing a slapcat and see if you inetorgpersons are in the
> resulting ldif.
> It sounds like they probably didn't get created. I think you need to
> explicitly include /usr/local/etc/openldap/schema/inetorgperson.schema in
> your slapd.conf if you haven't checked that.
>
> ----- Original Message -----
> From: "David Parker" <dparker@ebt.com>
> To: <openldap-software@OpenLDAP.org>
> Sent: Wednesday, May 02, 2001 4:59 PM
> Subject: search for a user by cn or uid
>
>
> > When a user logs in to our application, we first search from a defined
> root
> > in the directory with a filter like
> >        (&(|(cn=<name>)(uid=<name>))(objectclass=inetorgperson))
> > This works with Netscape and Oracle Internet Directory, but I am having
> > difficulty with OpenLDAP 2.0.7.
> >
> > I posted a query about indexing a custom attribute earlier today, and it
> > turned out to be my schema definition. In this case, I have
> cn,uid marked
> > for indexing in the slapd.conf, and I see the .dbb files in
> > var/openldap-ldbm, so it *looks* like the indexes are there.
> >
> > But my search finds nothing. Further,
> >   ldapsearch -b <my root> '(objectclass=*)'
> > doesn't return any of my inetorgperson entries, though they appear to be
> > created when I ran the ldif file. The search returns various
> other objects
> I
> > created.
> >
> > I am clearly doing something silly somewhere, but can't figure
> it out. Has
> > anybody seen this kind of behavior?
> >
> > Thanks for any advice.
> >
> > - DAP
> >
> > -----------------------------------------------------------
> > David Parker - eBT International - (401) 752-4497
> >
> > "If we become too serious we will lose our way."
> >                                          - Shunryu Suzuki
> >
> >

References:
- Re: search for a user by cn or uid
  - From: "David Young" <dyoung@NetToNetTech.com>

Prev by Date: Transfer existing Outlook data to ldap?
Next by Date: RE: Using Outlook
Index(es):
- Chronological
- Thread