Bernard Frit wrote:
>
> I'm running an enterprise mailservice with
> virtual domains and several servers using
> cyrus-2.0.7 + postfix + pamldap + mandrake-7.1
>
> I'm trying to make things working on Slackware
> using the sasl ldap patch in place of pam ldap.
>
> Did anybody customized the ldap patch to allow
> authentication using first ldap_search_s(..) to get
> the correct dn then only ldap_simple_bind_s(..) to
> authenticate?
Yes I have the patch and it was sent to the mailing list
I will dig it out (it is not by me and I wish to wedge it in
but its quite a big change).
[ CUT STUFF not REQuired]
> sendto(12, "R 1.3.6.1.4.1.3.2.2.2.6.2\n", 26, 0, {sun_family=AF_UNIX,
> sun_path="/tmp/.snmp_door"}, 17) = -1 ENOENT (No such file or directory)
> sendto(12, "R 1.3.6.1.4.1.3.2.2.2.6.3\n", 26, 0, {sun_family=AF_UNIX,
> sun_path="/tmp/.snmp_door"}, 17) = -1 ENOENT (No such file or directory)
> sendto(12, "S 1.3.6.1.4.1.3.2.2.2.6.3.0 v2.0"..., 35, 0,
> {sun_family=AF_UNIX, sun_path="/tmp/.snmp_door"}, 17) = -1 ENOENT (No such
> file or directory)
> accept(4,
>
> There is no ldap bind attempt within the trace (???)
What ever this section is it is nothing to do with sasl ??
Its all about some temp snmp file ?
>
>
> kheops:/var/log# ldapsearch ou=admins
> uid=bernard, ou=admins, o=myorg
> objectclass=top
> objectclass=sysadmin
> uid=bernard
> ou=admins
> userpassword=bernard
>
> uid=mailadmin, ou=admins, o=myorg
> objectclass=top
> objectclass=sysadmin
> ou=admins
> uid=mailadmin
> userpassword=mailadmin
1. Can you bind to ldap with these username and passwords
e.g
ldapsearch -D "uid=mailadmin,ou=admins,o=myorg" -W -b "o=JOFA,c=UK" 'uid=*'
2. try putting the line
ldap_basedn: ou=admins, o=myorg
in quotes or with out the space ?
3. Try putting openldap (or what ever ldap server) into
debug mode to see that it is reciving something.
4. erm???
--
Simon
