Re: slapo-chain on syncrepl slave. I simply can't get it working. Help??

Ive rebuilt OpenLDAP on provider to 2.4.31 but it's still happening. I've rebuilt twice - first with SASL, then without and it makes no difference either. This is driving me crazy bannanas now. Anything in my config that's wrong? What's the cause of Strong(er) authentication required

Re: What will happen if there are two user with same uid in OpenLDAP server

[Qian] Sorry, I am new to LDAP, can you please let me know how to figure out which way I am using for DN format? By some ldap commands? BTW, I installed and setup LDAP in a default way, so I guess the DN format should be uid=ghenry,ou=Users,dc=example,dc=com because when I login my machine

Re: slapo-chain on syncrepl slave. I simply can't get it working. Help??

Remove your dn{} line. Sorry, which dn line do you mean? This? authzTo: {0}dn:* Yeah. -- Kind Regards, Gavin Henry. Managing Director. T +44 (0) 1224 279484 M +44 (0) 7930 323266 F +44 (0) 1224 824887 E ghe...@suretecsystems.com Open Source. Open Solutions(tm).

Re: slapo-chain on syncrepl slave. I simply can't get it working. Help??

No difference. What were you hoping it would do?

Re: slapo-chain on syncrepl slave. I simply can't get it working. Help??

I also tried to upgrade syncrepl to TLS and while replication works fine over TLS, chaining still says Strong(er) authentication is needed. And i get 50150d47 do_bind: dn () SASL mech EXTERNAL 50150d47 ==slap_sasl2dn: converting SASL name cn=cn\3Dreplicator,o=webgate,st=some-state,c=au to a DN

Re: slapo-chain on syncrepl slave. I simply can't get it working. Help??

I just discovered something odd. I ran slapd -d 256 on the provider, then started the replicator, and then did ldapmodify and look what i found: 50152ae5 conn=1020 op=0 BIND dn= method=128 50152ae5 conn=1020 op=0 RESULT tag=97 err=0 text= 50152ae5 conn=1020 op=1 MOD

Re: slapo-chain on syncrepl slave. I simply can't get it working. Help??

Well looks like I figured it out. In the bottom of slapo-chain man page, it says All URIs not listed in the configuration are chained anonymously. my chain-uri was ldap://ldap.provider.net:389/; but my updateref was ldap://ldap.provider.net After changing chain-uri to the same as updateref,

Re: slapo-chain on syncrepl slave. I simply can't get it working. Help??

On 29 Jul 2012, at 11:08, elekktrett...@exemail.com.au elekktrett...@exemail.com.au wrote: No difference. What were you hoping it would do? Sorry, I replied in a rush! Gavin.

Special characters in distinguished name

Hello, are special characters, especially German umlauts, acceptable in the distinguished name? I've accidentally discovered that CPAN's Net::LDAP::Entry module doesn't support them (in the distinguished name). Other attributes are escaped correctly. Thank you in advance. Chris

Re: Special characters in distinguished name

Hello, are special characters, especially German umlauts, acceptable in the distinguished name? I've accidentally discovered that CPAN's Net::LDAP::Entry module doesn't support them (in the distinguished name). Other attributes are escaped correctly. Hi Chris, It depends on how you've