Remove/Cleanup pwdHistory attribute.

2011-03-10 Thread Meghanand Acharekar
Hi, Is it possible to change/remove pwdHistory attribute from an individual entry. I'm trying to change/remove using following ldif. dn: uid=user1,ou=People,dc=example,dc=com changetype: modify replace: pwdHistory pwdHistory: 0 and dn: uid=user1,ou=People,dc=example,dc=com changetype: delete

Re: Null Search Base

2011-03-10 Thread Andrew Findlay
On Wed, Mar 09, 2011 at 04:34:16PM -0700, l...@mm.st wrote: A security scanner was run against our ldap severs and came back with a warning stating The remote LDAP server supports search requests with a null, or empty, base object. This allows information to be retrieved without any prior

Re: Null Search Base

2011-03-10 Thread Howard Chu
Andrew Findlay wrote: On Wed, Mar 09, 2011 at 04:34:16PM -0700, l...@mm.st wrote: A security scanner was run against our ldap severs and came back with a warning stating The remote LDAP server supports search requests with a null, or empty, base object. This allows information to be retrieved

php ldap binding problems

2011-03-10 Thread Bram Cymet
Hi, Has anyone had to problem using php_ldap where the bind to ldap will work find but will unbind right away so any attempt to search the tree fails? If so were you able to fix it? -- Bram Cymet Software Developer Canadian Bank Note Co. Ltd. 613-608-9752

RE: php ldap binding problems

2011-03-10 Thread Germ van Eck
Hello Bram, I didn't have any problems as far as I can remember, I've wrapped the connection part so it is some time ago I actually coded that part. I connect to LDAP like this, maybe the protocol version is significant, I vaguely remember something with that. $this-conn =

Re: Simple Bind pass-through to SASL/PLAIN

2011-03-10 Thread Zach Schimke
Okay, I get nothing from saslauthd. The relevent logging slapd gives me: daemon: epoll: listen=7 active_threads=0 tvp=NULL daemon: epoll: listen=8 active_threads=0 tvp=NULL daemon: epoll: listen=9 active_threads=0 tvp=NULL daemon: epoll: listen=10 active_threads=0 tvp=NULL

Re: Simple Bind pass-through to SASL/PLAIN

2011-03-10 Thread Dan White
Without seeing any output from your SASL/PLAIN bind, I suspect that saslauthd may not be working with your slapd installation. If that's the case, double check the permissions on your saslauthd mux, and specify a saslauthd_path parameter within your sasl slapd.conf config if necessary. On

Re: Simple Bind pass-through to SASL/PLAIN

2011-03-10 Thread Zach Schimke
Okay, here's the log from a SASL/PLAIN bind working. Mar 10 16:28:51 kdc1 slapd[2367]: daemon: read active on 21 Mar 10 16:28:51 kdc1 slapd[2367]: connection_get(21) Mar 10 16:28:51 kdc1 slapd[2367]: connection_get(21): got connid=41 Mar 10 16:28:51 kdc1 slapd[2367]: connection_read(21):

Re: php ldap binding problems

2011-03-10 Thread Nick Milas
Hi, This is how I connect to LDAP and never had problems (my programming is not professional, but anyway): $ldap_server = ldap://ldap.example.com;; $ldap_binddn = uid=.$_POST['u'].,ou=people,dc=example,dc=com ; $ldap_pass = $_POST['p']; $ldaphandle=ldap_connect($ldap_server);