[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problems access openldap from Mac OS X Address Book


Looks like you probably should change your search scope to be subtree or one level (in the Addressbook prefs pane for the ldap server config.

You have it set for base (scope=0) which is why you are probably getting nothing.

Try the search on the command line to test:

Here it is set to 0 (base)

ldapsearch -x -LLL -h <yourldaphost> -s base -b "(|(givenName=Fred*)(sn=Fred*)(cn=Fred*)(mail=Fred*))"

Here it is set to 2 (subtree)
ldapsearch -x -LLL -h <yourldaphost> -s subtree -b "(|(givenName=Fred*)(sn=Fred*)(cn=Fred*)(mail=Fred*))"

The default in OS X is subtree, I don't know why it's different.


Gary LaVoy
Apple Computer Inc.

On Jul 24, 2004, at 6:52 PM, Quanah Gibson-Mount wrote:

Here's the ouput of slapd -d 256 when the address book application does a
lookup for the token:


# /usr/sbin/slapd -4 -d 256
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3,
bdb_db_init: Initializing BDB database
slapd starting
conn=0 fd=11 ACCEPT from IP= (IP=
conn=0 op=0 BIND dn="" method=128
conn=0 op=0 RESULT tag=97 err=0 text=
conn=0 op=1 SRCH base="dc=quist,dc=ca" scope=0
conn=0 op=1 SRCH attr=givenName sn cn mail telephoneNumber
facsimileTelephoneNumber o title ou buildingName street l st postalCode c
jpegPhoto mobile co pager destinationIndicator
conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
conn=0 op=2 UNBIND
conn=0 fd=11 closed