I'm trying to use our corporate openldap server for authentication to an
application server (Github Enterprise) that does not support any memberof
filters for allowed users.
As a workaround, I am looking into a translucent proxy server that would
only return a subset of users. Github
Le 28/07/2012 10:43, Qian Zhang a écrit :
Hi,
I have an OpenLDAP server setup, I am just wondering what will happen
when I do login if there are two user in different OU but with same
uid.
I guess PAM is in flat mode, so when I login with the uid, I can
always login as one of the two users, and
If that is true, should I add a restriction that the uid of each user
must be unique in the whole OpenLDAP server?
That's indeed a good practice.
It depends how you've built your entries. If the RDN has uid in it it
will be unique anyway.
Do you use something like cn=My
Hi,
I've spent 2 days on this now and can't figure it out.
Master directory (2.4.21 on FBSD 7, compiled with SASL)
Slave (2.4.31 on Debian Squeeze)
The goal is to eventually use TLS as both the servers are remote from one
to another, but for the sake of simplicity during testing i'm not using
As a workaround, I am looking into a translucent proxy server that would
only return a subset of users. Github Enterprise would only see a few
hundred users instead of thousands. Is this doable? Is there a better
solution?
Or you could use back-ldap too.
Sorry, hit send too soon. What does
Do you use something like cn=My Name,ou=Users,dc=example,dc=com with
uid in the entry or
uid=ghenry,ou=Users,dc=example,dc=com ?
[Qian] Sorry, I am new to LDAP, can you please let me know how to
figure out which way I am using for DN format? By some ldap commands?
BTW, I installed and setup
You may be getting hit by ITS#4744 (fixed in 2.4.30 and you provider
is older)
http://www.openldap.org/its/index.cgi/Archive.Software%20Bugs?id=4744;selectid=4744;usearchives=1
but will take a closer look at your config.
Ive rebuilt OpenLDAP on provider to 2.4.31 but it's still happening.