[Date Prev][Date Next]
back-ldap: how to bind to remote server?
- To: email@example.com
- Subject: back-ldap: how to bind to remote server?
- From: Székelyi Szabolcs <firstname.lastname@example.org>
- Date: Mon, 23 Apr 2007 23:06:12 +0200
- Openpgp: url=http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x5AB33243
- User-agent: Icedove 220.127.116.11 (X11/20070329)
-----BEGIN PGP SIGNED MESSAGE-----
I'm trying to use OpenLDAP as a proxy. I want it to bind to the remote
LDAP server with a fixed dn, and use that dn for searches. This way,
any dn binding to the proxy (even anonymously) could see objects and
attributes that the dn used to bind to the real LDAP server can see.
My problem is that it seems that the proxy does not bind to the remote
server (in other words, it binds anonymously), just forwards searches,
which fail this way, because the remote server requires authentication.
The binddn and bindpw configuration options are correct, I can use
ldapsearch to retrieve objects directly from the remote server.
Looking at the network traffic, I can't see the proxy attempting to bind
using the dn given in the binddn option.
Here is the relevant part of my slapd.conf:
Is it possible to configure back-ldap this way?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
-----END PGP SIGNATURE-----