[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP's Backend Rewrite Engine



Michael Gale <michaelg@xandros.com> writes:
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
> So, I decided to try the proxy approach, and I would like to rewrite a
> DN from this:
>
> "cn=<user name>,cn=Administrators,dc=test,dc=com"
>
> to this:
>
> "cn=<user name>,cn=Users,dc=mixeddomain,dc=com"
>
> I would like to perform a simple substitution where the user name from
> one DN gets copied to another.  I am using a rewrite context for a
> client -> server operation, but I'm pretty sure the following is not
> right:
>
> database ldap
> rewriteEngine On
> rewriteContext bindDn
> rewriteRule "cn=(.*),cn=Administrators,dc=test,dc=com"
>                      "cn=%1,cn=Users,dc=mixeddomain,dc=com"
> rebind-as-user
> uri ldap://mixedmaster.mixeddomain.com/
>
> I'm a little lost as to what rules/contexts/uris are required in the
> "slapd.conf" file. Any help would be greatly appreciated.
You didn't mention which version you are referring to.
I my OpenLDAP-2.X.X which is april HEAD I have following lines
,----[ slapd.conf ]
| modulepath /usr/local/libexec/openldap
| moduleload pcache.la
| moduleload rwm.la
| moduleload back-ldap.la
| ...
| database   ldap
| lastmod off
| overlay rwm
| suffix  "dc=virtual,dc=com"
| rwm-suffixmassage "dc=virtual,dc=com" "dc=real,dc=com"
| rootdn cn=admin,dc=virtual,dc=com
| rootpw secret
| binddn cn=updateManager,dc=real,dc=com
| bindpw secret2
| uri ldap://remote.server:389
| ....
| <some proxycache options>
`----
-Dieter
-- 
Dieter =?iso-8859-1?q?Kl=FCnter?= | Systemberatung
http://www.dkluenter.de
GPG Key ID:01443B53
Date: Thu, 16 Jun 2005 08:13:45 +0200
Message-ID: <873briu8va.fsf@rubin.l4b.de>
User-Agent: Gnus/5.1006 (Gnus v5.10.6) XEmacs/21.5 (chestnut, linux)