[Date Prev][Date Next] [Chronological] [Thread] [Top]

config backend with SASL

To: openldap <openldap-software@OpenLDAP.org>
Subject: config backend with SASL
From: Eran Leiserowitz <eran.leiserowitz@xeround.com>
Date: Mon, 04 Sep 2006 17:17:33 +0300

Hi,

I've posted the following question, but no one seemed to answer it. I
guess that I'm missing something trivial. I would appreciate if someone
could help.

Thanks,
  Eran

// Original message
///////////////////

Hi,

I've added SASL configuration to the test slapd that I'm using. I've
added the following to the slapd.conf:

disallow bind_simple
disallow bind_anon
sasl-secprops noanonymous
sasl-host localhost

#######################################################################
# BDB database definitions
#######################################################################

I've added a test user using the saslpasswd2 utility. When I'm trying to
access the bdb database, everything seems to be OK. But, when I try to
search the "cn=config" sub tree, I get the following:

ldapsearch -a always -O noanonymous -U erantest@eranl -Y login -w
password -b "cn=schema,cn=config"
SASL/LOGIN authentication started
SASL username: erantest@eranl
SASL SSF: 0
# extended LDIF
#
# LDAPv3
# base <cn=schema,cn=config> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#

# search result
search: 4
result: 50 Insufficient access

# numResponses: 1

Can someone please explain what I'm missing here.

Thanks,
  Eran

Follow-Ups:
- Re: config backend with SASL
  - From: "Pierangelo Masarati" <ando@sys-net.it>

Prev by Date: Re: JLDAP LdapSearchResults getCount strange behaviour
Next by Date: Re: config backend with SASL
Index(es):
- Chronological
- Thread