[Date Prev][Date Next] [Chronological] [Thread] [Top]

authentication with ldap-meta

To: openldap-software@OpenLDAP.org
Subject: authentication with ldap-meta
From: Jan Du Caju <Jan.DuCaju@kuleuven.net>
Date: Tue, 18 Feb 2003 10:09:37 +0100
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020623 Debian/1.0.0-0.woody.1

Hi,

I have setup a ldap-meta based directory to join multiple (2 ;-) directory
trees into 1 for authentication purposes. If I do NON-anonymous ldap
searches with the ldap-search command this succeeds. But trying to do
authentication with e.g. the apache ldap-auth module fails when I contact
the meta directory. Configuring apache to directly connect to a ldap
server behind the meta directory does work. Any hints?

adTHANKSvance,
Jan.
------------------------------------- KULeuvenNet ------

openldap-2.1.12 ./configure --prefix=/usr/local/ldap --with-cyrus-sasl --with-tls --disable-ipv6 --with-gnu-ld --disable-bdb --disable-ldbm --enable-ldap --enable-meta --enable-rewrite

ldapsearch -x -h ldap-meta -D "uid=u0001439,ou=pers,o=kuleuven,c=be" -W "cn=Jan Du Caju" results in:

conn=0 fd=10 ACCEPT from IP=134.58.127.17:33722 (IP=134.58.127.17:389) conn=0 op=0 BIND dn="uid=u0001439,ou=pers,o=kuleuven,c=be" method=128 ber_flush: 58 bytes to sd 11 request 1 done conn=0 op=0 AUTHZ dn="uid=u0001439,ou=pers,o=kuleuven,c=be" mech=simple ssf=0 ber_flush: 14 bytes to sd 10 conn=0 op=0 RESULT tag=97 err=0 text= deferring operation conn=0 op=1 SRCH base="o=kuleuven,c=be" scope=2 filter="(cn=Jan Du Caju)" ber_flush: 14 bytes to sd 12 request 1 done ber_flush: 14 bytes to sd 13 request 1 done ber_flush: 69 bytes to sd 12 ber_flush: 68 bytes to sd 11 ber_flush: 68 bytes to sd 13 request 2 done =>meta_back_search [0] match="" err="" ber_flush: 1087 bytes to sd 10 request 2 done =>meta_back_search [2] match="" err="" request 2 done =>meta_back_search [1] match="" err="" ber_flush: 14 bytes to sd 10 conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= conn=0 op=2 UNBIND ber_flush: 7 bytes to sd 12 ber_flush: 7 bytes to sd 11 ber_flush: 7 bytes to sd 13 conn=0 fd=10 closed

apache authentication results in:

conn=0 fd=10 ACCEPT from IP=134.58.127.2:4478 (IP=134.58.127.17:389)
conn=0 op=0 BIND dn="o=kuleuven,c=be" method=128
ber_flush: 14 bytes to sd 10
conn=0 op=0 RESULT tag=97 err=0 text=
conn=0 op=1 SRCH base="o=kuleuven,c=be" scope=2 filter="(uid=u0001439)"
ber_flush: 14 bytes to sd 11
request 1 done
ber_flush: 14 bytes to sd 12
request 1 done
ber_flush: 14 bytes to sd 13
request 1 done
ber_flush: 67 bytes to sd 11
ber_flush: 66 bytes to sd 12
ber_flush: 66 bytes to sd 13
request 2 done
=>meta_back_search [0] match="" err=""
ber_flush: 1087 bytes to sd 10
request 2 done
=>meta_back_search [2] match="" err=""
request 2 done
=>meta_back_search [1] match="" err=""
ber_flush: 14 bytes to sd 10
conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
conn=0 op=2 BIND dn="uid=u0001439,ou=pers,o=kuleuven,c=be" method=128
ber_flush: 14 bytes to sd 10
conn=0 op=2 RESULT tag=97 err=49 text=
conn=0 op=3 UNBIND
ber_flush: 7 bytes to sd 11
ber_flush: 7 bytes to sd 12
ber_flush: 7 bytes to sd 13
conn=0 fd=10 closed

Prev by Date: LDAP and DNS
Next by Date: Re: replica not replicating
Index(es):
- Chronological
- Thread