Hi,
After doing some more research and lot's of tcpdumping, i got some more
info, but still don't know how to solve my problem.
As i mentioned, i'm doing the search agains an Active Directory service. I
do the serch with the code showed above, and with the tcpdump's i seems to
show that when i do it with ldap_search_ext_s(), i get after the found item, a
list of referals, like:
dap://ForestDnsZones.example.dc/DC=ForestDnsZones,DC=example,DC=dc
ldap://DomainDnsZones.example.dc/DC=DomainDnsZones,DC=example,DC=dc
ldap://example.dc/CN=Configuration,DC=example,DC=dc
and ldap_search_ext_s() tries to follow those referrals. On this attempt it
tries the bind without the credentials, and than i get rejected by the server
of sometimes i'm even unable to reach the mentioned server.
I've tried adding to my test code,
int referals = LDAP_OPT_OFF;
/* before the init */
ldap_set_option( NULL, LDAP_OPT_REFERRALS, &referals);
as it seems to have no effect, i still get my test code trying to 'follow' the
referals, i did try also put it as:
/* after the ldap_init , using the returned LDAP* */
ldap_set_option( ld, LDAP_OPT_REFERRALS, &referals);
but still no effect.
And doing the same tcpdumping and running ldapsearch -d ... , it appears that
ldapsearch, using the same search parameters as my test code, does NOT try to
follow the referrals, even getting them back from the server the same as my
test code.
As additional info, the wireshark summary of the search return packet is
something like:
No. Time Source Destination Protocol
Length Info
97 4.810369000 9.9.9.9 5.5.5.5 LDAP 405
searchResEntry(2) "CN=Alonso.Vega,OU=Users,OU=Country,DC=example,DC=dc" |
searchResDone(2) Unknown result(9) (Referral:
dap://ForestDnsZones.example.dc/DC=ForestDnsZones,DC=example,DC=dc
ldap://DomainDnsZones.example.dc/DC=DomainDnsZones,DC=example,DC=dc
ldap://example.dc/CN=Configuration,DC=example,DC=dc) [1 result]
Any suggestion/help very appreciated on how i could avoid that the search
tries to follow the referrals?