[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Difficulty searching by groupOfNames member

To: "'openldap-software@OpenLDAP.org'" <openldap-software@OpenLDAP.org>
Subject: RE: Difficulty searching by groupOfNames member
From: Kristin Engstrom <Kristin.Engstrom@netiq.com>
Date: Tue, 30 Jul 2002 17:01:33 -0700
Cc: "'bruno.eteve@atempo.com'" <bruno.eteve@atempo.com>

I have some small measure of success to report.

First the bad new:  I downloaded the latest version -- 2.0.25 (20020618) --
and rebuilt it (a half-day affair since I'm using MS Visual C++).  No
change, so I also upgraded from Berkeley DB 3.2.9 to 4.0.14 and rebuilt
everything again.  I double-checked my index configuration and built my
directory database anew.  Still no improvement in searching by member dn.

Now, the good news: I created a new group in my directory 

# TestGroup, CustomerN, netiq, com
dn: cn=TestGroup, o=CustomerN, dc=netiq, dc=com
objectClass: top
objectClass: groupOfNames
cn: TestGroup
member: uid=00001
member: uid=00002
member: uid=00004
description: TestGroup

I have no difficulty finding this group using the following: 

ldapsearch -x -b "dc=netiq,dc=com" -D "cn=Manager,dc=netiq,dc=com" -w secret
"(member=uid=00004)"

That works exactly as expected, but I still can't seem to search using a dn.

Since I can't be sure my users will store group memberships by UID, I still
need to figure out why I can't get a match with a filter like "dn=cn=Jessica
Coffin, ...".  I've tried removing spaces between commas, but that makes no
difference.  I've checked to make sure there are no hidden characters in
either my directory entry or my filter.  Is there something else wrong with
my syntax?

Kristin

-----Original Message-----
From: Bruno Eteve [mailto:bruno.eteve@atempo.com] 
Sent: Tuesday, July 30, 2002 1:48 AM
To: 'openldap-software@OpenLDAP.org'
Subject: Re: Difficulty searching by groupOfNames member

Kristin Engstrom wrote:
> 
> Alas, I cannot even get Jessica Coffin (the first member listed) to show
up.

Good news, it works now for me.

I updated yesterday my OpenLDAP version.
I'm now running openldap-2.0.25 and the following command returned the
result I expected :

./ldapsearch -x -b "o=atempo,c=US" -D "cn=admin,o=atempo,c=US" -w secret
"(&(objectclass=groupOfNames) (member=CN=Bruno ETEVE, OU=HQ, OU=FRANCE,
o=atempo, c=US))"

-- 
Bruno Eteve -*- 01 64 86 83 00 -*- http://www.atempo.com
Don't believe everything you hear or anything you say.

Prev by Date: Back-links?? I think that is what they are called.
Next by Date: password modify extended operation crashes slave-slapd-server
Index(es):
- Chronological
- Thread