[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Solaris 9 LDAP client issues
On Tue, 20 Aug 2002, Scott Moorhouse wrote:
> Igor Brezac wrote:
>
> >On Tue, 20 Aug 2002, Scott Moorhouse wrote:
> >
> >
> >
> >>This is still definitely not working. OpenLDAP considers the LDAP
> >>client to be binding as an anonymous user. Whether that means it
> >>botched the authentication or never tried it in the first place is
> >>something I'm not familiar enough with the debug output of slapd to
> >>determine yet. I can't even get it to bind as my RootDN.
> >>
> >>I have been testing my binding capabilities and access controls with the
> >>GQ LDAP client, and everything works as expected there, so why doesn't
> >>the Solaris client work?
> >>
> >>
> >
> >You do not hove something configured properly.
> >
> >
> Or the client's broken. :) Or, there's some incompatibility between in
> and 2.0.23, which is the OpenLDAP version I'm using, I guess.
>
Perhaps, but it has worked for me for a long time, Sol 8 & 9.
> /var/ldap/ldap_client_file
> NS_LDAP_FILE_VERSION= 2.0
> NS_LDAP_SERVERS= my.ldap.server.ip
> NS_LDAP_SEARCH_BASEDN= dc=mydomain,dc=com
> NS_LDAP_SEARCH_SCOPE= sub
> NS_LDAP_CREDENTIAL_LEVEL= proxy
> NS_LDAP_SERVICE_SEARCH_DESC= automount:ou=AutomountMaps,dc=mydomain,dc=com
>
Here is your problem. Add
NS_LDAP_AUTH= simple
default is none. Restart nscd and ldap.client or reboot after you make
this change.
> /etc/defaultdomain
> mydomain.com
>
> Is /etc/defaultdomain supposed to be a dn if you are using LDAP as a
> naming service? My guess is no, but with Sun, nothing surprises me.
>
No. What you have is correct.
--
Igor