[Date Prev][Date Next]
Re: CLI remotes write, php remotes can't
> Just a few ideas off the top of my head:
I appreciate the input and ideas as I've been struggling with this for weeks now.
What ever the problem is, it's not obvious and isn't in the logs either.
> - make sure your PHP sets ldap version to 3
It is connecting using v3.
> - make sure you perform a bind operation with an account that has
> sufficient authorizations to create entries
Seems to be fine.
Jan 23 06:22:20 ldap slapd: access_allowed: no res from state (userPassword)
Jan 23 06:22:20 ldap slapd: => acl_mask: access to entry "uid=doopy,ou=users,dc=mydomain,dc=net", attr "userPassword" requested
Jan 23 06:22:20 ldap slapd: => acl_mask: to value by "", (=0)
Jan 23 06:22:20 ldap slapd: <= check a_dn_pat: *
Jan 23 06:22:20 ldap slapd: <= acl_mask:  applying write(=wrscxd) (stop)
Jan 23 06:22:20 ldap slapd: <= acl_mask:  mask: write(=wrscxd)
Jan 23 06:22:20 ldap slapd: => access_allowed: auth access granted by write(=wrscxd)
> For further investigation, I suggest studying the slapd logs, with
> loglevel stats enabled. The error code of your failed ADD operation
> should point you to the problem.
I have my loglevel set to 128 right now.
What I don't understand so that I can move forward trying to find the problem is as follows.
When I use a diagnostic tool on the web server to test, if I enter a non existing user in ldap, then no connection is made to openldap.
When I enter a user which does exist in ldap but not on the web server, a connection is made and the user is found without errors.
I know part of the problem is on the web side but part of the second problem, that of creating accounts is on the ldap side. I need to resolve part one first but have been stumped.
Anyhow, thanks again for the input, I'll keep looking until I have more to post.