RE: ldapsearch error

["Tay, Gary" <Gary_Tay@platts.com>]

Sorry for my misunderstanding, /etc/ldap.secret is used by NSS_LDAP, not
"ldapsearch".

IIRC, root user on local LDAP server always bind as "rootdn" of the LDAP
server if "-D" option is omitted?

-----Original Message-----
From: Tay, Gary 
Sent: Wednesday, October 27, 2004 12:38 PM
To: 'Albert Whale'; openldap-software@OpenLDAP.org
Subject: RE: ldapsearch error


Root always takes on "cn=Manager" privilege and uses the password in
/etc/ldap.secret to authenticate.

Normal user binds as the "-D binddn" name in command line and if "-D" is
not defined, "anonymous".

No such object I guess due to ACL's permssion set in server slapd.conf.

Anyone pls correct me if I am incorrect.

-----Original Message-----
From: owner-openldap-software@OpenLDAP.org
[mailto:owner-openldap-software@OpenLDAP.org] On Behalf Of Albert Whale
Sent: Wednesday, October 27, 2004 1:25 AM
To: openldap-software@OpenLDAP.org
Subject: ldapsearch error


I have installed LDAP 2.1.25 on Mandrake 10.0

A simple query for a uid performed by root functions properly:

[root@web1 ldap]# /usr/bin/ldapsearch -x -LLL "(uid=rfritz)"
dn: uid=rfritz,ou=users,dc=example,dc=net
uid: rfritz
<snip>

HOWEVER, I cannot perform this same query by a non-root user:

[aewhale@web1 aewhale]$ /usr/bin/ldapsearch -x -LLL "(uid=rfritz)" No
such object (32)


Why?  Any clues?

-- 
Albert E. Whale, CISA CISSP
Sr. Security, Network, Risk Assessment and Systems Consultant
-------------------------------------------------------------------
ABS Computer Technology, Inc. - www.ABS-CompTech.com
SPAM Zapper - No-JunkMail.com - Spam-Zapper.com - SPAM Stops Here.
President of the Pittsburgh InfraGard Alliance