[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: test of SASL DIGEST-MD5 mechanism

To: Tony Earnshaw <tonni@billy.demon.nl>
Subject: Re: test of SASL DIGEST-MD5 mechanism
From: Cindy Wang <cwang@kinetworks.com>
Date: Thu, 20 Mar 2003 15:39:41 -0500
Cc: openldap-software@OpenLDAP.org
References: <3E777095.3000109@kinetworks.com> <1048030798.8832.60.camel@localhost>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01

Tony Earnshaw wrote:

tir, 2003-03-18 kl. 20:16 skrev Cindy Wang:

================== slapd.conf ====================
password-hash   {CLEARTEXT}
sasl-regexp
       uid=(.*),cn=rtp.KiNETWORKS.com,cn=digest-md5,cn=auth
       uid=$1,cn=enigneer,dc=rtp,dc=KiNETWORKS,dc=com
================================================

Could anyone tell if anything is wrong with the above sasl-regexp mapping?


The ldif seems o.k. Basically, your DIT doesn't need to differ from a
standard DIT. The ldapsearch command line looks o.k. too. If you have
the correct base in ldap.conf/ldaprc, you can leave the base out in the
ldapsearch command.

In slapd.conf, try:

sasl-regexp "uid=(.*),cn=digest-md5,cn=auth"
"ldap:///dc=rtp,dc=KiNETWORKS,dc=com??sub?cn=$1";

Presuming ldap is available on port 389.

Best,

Tony

Thanks for all the responses. It worked for me after I change the sasl-regexp directive as the following:

sasl-regexp "uid=(.*),cn=digest-md5,cn=auth" "ldap:///dc=rtp,dc=KiNETWORKS,dc=com??sub?uid=$1";

Thanks again.

Cindy Wang
Software Product Engineer
KiNETWORKS

References:
- test of SASL DIGEST-MD5 mechanism
  - From: Cindy Wang <cwang@kinetworks.com>
- Re: test of SASL DIGEST-MD5 mechanism
  - From: Tony Earnshaw <tonni@billy.demon.nl>

Prev by Date: Re: new user, question about authentication
Next by Date: RE: win 2000 problem?
Index(es):
- Chronological
- Thread