[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Disable Protocol version 3?

To: "Quanah Gibson-Mount" <quanah@zimbra.com>
Subject: Re: Disable Protocol version 3?
From: "Jeremiah Martell" <inlovewithgod@gmail.com>
Date: Mon, 10 Nov 2008 12:58:43 -0500
Cc: openldap-software@openldap.org
Content-disposition: inline
In-reply-to: <D389E67133214A9163ECBF24@192.168.1.199>
References: <233eb300811100901g10b25b5fn53644ac61908fd0@mail.gmail.com> <AD6F2B6AED5FC171882A2C45@192.168.1.199> <233eb300811100934r3ce7eb93m332ec63369bd841@mail.gmail.com> <D389E67133214A9163ECBF24@192.168.1.199>

Quanah,

Sorry. I hit "Reply" instead of "Reply to All".

My problem is not simply seeing which versions a server supports.

I have written some ldap client code that does certain functions on an
ldap server. My code attempts to
bind with version 3, but if it gets a protocol error back, it is
supposed to drop down to version 2 and attempt
the bind again with version 2.

So my problem is finding a server that doesn't accept version 3 binds.

Is the only solution to my problem using an older openldap 1.x server?
>From your earlier reply it seems that is the case.

Thanks,
 - Jeremiah

On Mon, Nov 10, 2008 at 12:45 PM, Quanah Gibson-Mount <quanah@zimbra.com> wrote:
> Hi,
>
> Please keep your replies on the list.
>
> Yes, the ancient OpenLDAP v1 was an LDAP v2 server.  However, all modern
> software uses LDAP v3.  If you have software that isn't LDAP v3 compliant, I
> suggest fixing it, or using an OpenLDAP v2 server that allows ldapv2 style
> connections.
>
> If all you're doing is writing a client that wants to see the supported
> versions, I suggest just querying the rootDSE to see what it says:
>
> ldapsearch -x -h freelancer -s base -b "" +
> dn:
> structuralObjectClass: OpenLDAProotDSE
> supportedLDAPVersion: 3
>
>
> (The above is edited to drop out other bits unrelated to the
> supportedLDAPVersion).
>
> --Quanah
>
> --On Monday, November 10, 2008 12:34 PM -0500 Jeremiah Martell
> <inlovewithgod@gmail.com> wrote:
>
>> Quanah,
>>
>> From this page:
>> http://www.openldap.org/software/roadmap.html
>>
>> It seems that openldap only supported version 3 beginning with openldap
>> 2.x. So it seems if I used 1.x it would only support version 2, right?
>>
>> Or am I missing something?
>>
>> Thanks,
>>  - Jeremiah
>>
>>
>> On Mon, Nov 10, 2008 at 12:16 PM, Quanah Gibson-Mount <quanah@zimbra.com>
>> wrote:
>>>
>>> No, you cannot disable protocol version 3... This question doesn't even
>>> really make sense.  OpenLDAP is an LDAP protocol version 3 server.
>>>
>>> --Quanah
>>>
>>> --On Monday, November 10, 2008 12:01 PM -0500 Jeremiah Martell
>>> <inlovewithgod@gmail.com> wrote:
>>>
>>>> Problem:
>>>> I'm testing my client code that will drop down to version 2 if version
>>>> 3 isn't supported.
>>>>
>>>> Solution:
>>>> I've already found: http://www.openldap.org/faq/data/cache/822.html
>>>> which shows how to allow v2.
>>>> Now all I need is how to disable v3.
>>>>
>>>> Nothing in the slapd configuration file looks like it would do the
>>>> trick. And nothing in the ./configure --help looked like it would do it
>>>> either.
>>>>
>>>> Is this possible without buliding an older version of openldap? If so,
>>>> how?
>>>>
>>>> Thanks,
>>>> --
>>>> - Jeremiah Martell
>>>> http://inlovewithGod.com
>>>
>>>
>>>
>>> --
>>>
>>> Quanah Gibson-Mount
>>> Principal Software Engineer
>>> Zimbra, Inc
>>> --------------------
>>> Zimbra ::  the leader in open source messaging and collaboration
>>>
>>
>>
>>
>> --
>> - Jeremiah Martell
>> http://inlovewithGod.com
>
>
>
> --
>
> Quanah Gibson-Mount
> Principal Software Engineer
> Zimbra, Inc
> --------------------
> Zimbra ::  the leader in open source messaging and collaboration
>



-- 
- Jeremiah Martell
http://inlovewithGod.com

References:
- Disable Protocol version 3?
  - From: "Jeremiah Martell" <inlovewithgod@gmail.com>

Prev by Date: Re: Disable Protocol version 3?
Next by Date: Re: Disable Protocol version 3?
Index(es):
- Chronological
- Thread