[ldap] Re: LDAP Authentication bind uid

[Brian Woods]

Yes, there is. Here is a sample user to look at plus part of the slapd.conf with the ACL. Here is a sample user: --------------------------------------------------- dn: uid=first.last,o=Organization uid: first.last uidNumber: 51216 creatorName: joshua.jackson createTime: 200608041732Z structuralObjectClass: caseRecord entryUUID: 337ce902-b854-102a-8915-ab9b99587a82 creatorsName: cn=admin,o=Organization createTimestamp: 20060804222747Z objectClass: caseUser objectClass: faculty objectClass: posixAccount objectClass: sambaAccount objectClass: BGIUser objectClass: caseRecord userPassword:: e2MyeXB0fTQxOGxsSVMvMFB3TC4= lmPassword: B4942B3EED537F1E1D71060D896B7A46 ntPassword: 6A223CDEE99D3DFC2C0B20D230E4DDAC sn: Last givenName: First gender: M gidNumber: 123456 loginShell: /bin/false email: [EMAIL PROTECTED] homeDirectory: /Volumes/HomeDir cn: First Last rid: 1 entryCSN: 20060804222844Z#000001#00#000000 modifiersName: cn=admin,o=Organization modifyTimestamp: 20060804222844Z ....portion of  slapd.conf ------------------------------------------------------ access to *         by self                 write         by users                read         by *                    none SIZELIMIT       2000 allow bind_v2 database        bdb suffix          "o=Organization" rootdn          "cn=admin,o=Organization" rootpw          xxxxx directory       /var/openldap # Indices to maintain index   objectClass     eq index   uid             sub index   uidNumber       eq index   attrName        eq index   objName         eq index   sessionID       eq On Aug 14, 2006, at 9:27 AM, Adam Tauno Williams wrote: On Mon, 2006-08-14 at 09:16 -0500, Brian Woods wrote: I am trying to authenticate users, I am unable to bind using the uid in the dn... # ldapsearch -x -D "uid=user,o=organization"  -w pass ldap_bind: Invalid credentials (49) Does "uid=user,o=organization" actually exist? I am sure the password is correct. If i use the rootdn, it works. If anyone could help me here. Would be appreciated. --- You are currently subscribed to ldap@umich.edu as: [[EMAIL PROTECTED]] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message. --- You are currently subscribed to ldap@umich.edu as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.