[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapsearch 2.0 vs. 2.1 against a netware LDAP server

To: Carl Wilhelm Soderstrom <chrome@real-time.com>
Subject: Re: ldapsearch 2.0 vs. 2.1 against a netware LDAP server
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Fri, 16 Apr 2004 12:57:21 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <20040416140517.D16211@real-time.com>
References: <20040416140517.D16211@real-time.com>

Likely the executables are not sharing the same ldap.conf(5) settings.

Kurt

At 12:05 PM 4/16/2004, Carl Wilhelm Soderstrom wrote:
>I'm trying to figure out how to authenticate users against a Novell Netware
>6.5 LDAP server (eDirectory 8.7.1).
>
>So far I'm just trying to query the server using ldapsearch.
>
>Using ldapsearch from openldap-2.1.26 (either on Debian or Gentoo); I can
>query the server and get a meaningful response (i.e. it returns a record).
>
>Using the exact same command with ldapsearch from openldap-2.0.27 (on redhat
>7.3; or whitebox 3.0); it gives me an NDS error of 'no such entry'.
>
>Using a similar command (same options, different server) from ldapsearch
>2.0.27 against an openldap 2.0.27 server (on Linux); works just fine,
>returning the expected record.
>
>Any idea what would cause the discrepancy? I've tried ldap v2 and v3
>protocols, and it seems to make no difference. tried a large number of other
>options, to no avail.
>
>here's the commands and the (edited for privacy) results. is the 'matchedDN:
>dc=com' line in the failed command, an issue? shouldn't it be
>'cn=chrome,dc=ourdomain,dc=com' or something like that?
>
>here's the failing one:
>$ldapsearch -u -D "cn=admin,dc=ourdomain,dc=com" -H
>ldap://ldapserver.int.ourdomain.com/ -x -v -W cn=chrome
>ldap_initialize( ldap://ldapserver.int.ourdomain.com/ )
>Enter LDAP Password: 
>filter: cn=chrome
>requesting: ALL
>version: 2
>
>#
># filter: cn=chrome
># requesting: ALL
>#
>
># search result
>search: 2
>result: 32 No such object
>matchedDN: dc=com
>text: NDS error: no such entry (-601)
>
># numResponses: 1
>
>
>here's the succeeding one:
>$ldapsearch -u -D "cn=admin,dc=ourdomain,dc=com" -H
>ldap://ldapserver.int.ourdomain.com/ -x -v -W cn=chrome 
>ldap_initialize( ldap://ldapserver.int.ourdomain.com/ )
>Enter LDAP Password: 
>filter: cn=chrome
>requesting: ALL
># extended LDIF
>#
># LDAPv3
># base <> with scope sub
># filter: cn=chrome
># requesting: ALL
>#
>
># chrome, ourdomain.com
>dn: cn=chrome,dc=ourdomain,dc=com
>ufn: chrome, ourdomain.com
>uid: chrome
>sn: Carl
>objectClass: inetOrgPerson
>objectClass: organizationalPerson
>objectClass: person
>objectClass: ndsLoginProperties
>objectClass: top
>loginTime: 20040412213035Z
>cn: chrome
>ACL: 2#subtree#cn=chrome,dc=ourdomain,dc=com#[All Attributes Rights]
>ACL: 6#entry#cn=chrome,dc=ourdomain,dc=com#loginScript
>ACL: 2#entry#[Public]#messageServer
>ACL: 2#entry#[Root]#groupMembership
>ACL: 6#entry#cn=chrome,dc=ourdomain,dc=com#printJobConfiguration
>ACL: 2#entry#[Root]#networkAddress
>
># search result
>search: 2
>result: 0 Success
>
># numResponses: 2
># numEntries: 1
>
>
>
>Carl Soderstrom.
>-- 
>Systems Administrator
>Real-Time Enterprises
>www.real-time.com

Follow-Ups:
- Re: ldapsearch 2.0 vs. 2.1 against a netware LDAP server
  - From: Carl Wilhelm Soderstrom <chrome@real-time.com>

References:
- ldapsearch 2.0 vs. 2.1 against a netware LDAP server
  - From: Carl Wilhelm Soderstrom <chrome@real-time.com>

Prev by Date: RE: Data migration from one openLDAP server to another.
Next by Date: Re: ldapsearch 2.0 vs. 2.1 against a netware LDAP server
Index(es):
- Chronological
- Thread