--- "M.-A. DARCHE" <[EMAIL PROTECTED]> schrieb:
Thank you M.-A, DARCHE
> Greedchen Mueller a �crit :
> >
> > The LDAP debug shows:
> > +++++++++++++++++++++++++++++++++
> > ber_get_next
> > ldap_read: want=8, got=8
> > 0000: 30 15 02 01 01 60 10 02
>
> > 0....`..
> > ldap_read: want=15, got=15
> > 0000: 01 03 04 05 61 64 6d 69 6e 80 04 72 6f
> 6f 74
> > ....admin..root
> > ber_get_next: tag 0x30 len 21 contents:
> > ber_dump: buf=0x08173910 ptr=0x08173910
> end=0x08173925
> > len=21
> > 0000: 02 01 01 60 10 02 01 03 04 05 61 64 6d
> 69 6e
> > 80 ...`......admin.
> > 0010: 04 72 6f 6f 74
>
> > .root
> > ber_get_next
> > ldap_read: want=8 error=Resource temporarily
> > unavailable
> > ber_get_next on fd 11 failed errno=11 (Resource
> > temporarily unavailable)
> > daemon: select: listen=6 active_threads=0 tvp=NULL
> > do_bind
> > ber_scanf fmt ({imt) ber:
> > ber_dump: buf=0x08173910 ptr=0x08173913
> end=0x08173925
> > len=18
> > 0000: 60 10 02 01 03 04 05 61 64 6d 69 6e 80
> 04 72
> > 6f `......admin..ro
> > 0010: 6f 74
>
> > ot
> > ber_scanf fmt (m}) ber:
> > ber_dump: buf=0x08173910 ptr=0x0817391f
> end=0x08173925
> > len=6
> > 0000: 00 04 72 6f 6f 74
>
> > ..root
> >
> >>>>dnPrettyNormal: <admin>
> >
> > => ldap_bv2dn(admin,0)
> > ldap_err2string
> > <= ldap_bv2dn(admin)=-4 Decoding error
> > bind: invalid dn (admin)
> > send_ldap_result: conn=0 op=0 p=3
> > send_ldap_result: err=34 matched="" text="invalid
> DN"
> > send_ldap_response: msgid=1 tag=97 err=34
> > ber_flush: 24 bytes to sd 11
> > 0000: 30 16 02 01 01 61 11 0a 01 22 04 00 04
> 0a 69
> > 6e 0....a..."....in
> > 0010: 76 61 6c 69 64 20 44 4e
>
> > valid DN
> > ldap_write: want=24, written=24
> > 0000: 30 16 02 01 01 61 11 0a 01 22 04 00 04
> 0a 69
> > 6e 0....a..."....in
> > 0010: 76 61 6c 69 64 20 44 4e
>
> > valid DN
> > conn=0 op=0 RESULT tag=97 err=34 text=invalid DN
> > daemon: activity on 1 descriptors
> > daemon: activity on: 11r
> > daemon: read activity on 11
> > connection_get(11)
> > connection_get(11): got connid=0
> > connection_read(11): checking for input on id=0
> > ber_get_next
> > ldap_read: want=8, got=7
> > 0000: 30 05 02 01 02 42 00
>
> > 0....B.
> > ber_get_next: tag 0x30 len 5 contents:
> > ber_dump: buf=0x08173ae0 ptr=0x08173ae0
> end=0x08173ae5
> > len=5
> > 0000: 02 01 02 42 00
>
> > ...B.
> > ber_get_next
> > ldap_read: want=8 error=Resource temporarily
> > unavailable
> > ber_get_next on fd 11 failed errno=11 (Resource
> > temporarily unavailable)
> > daemon: select: listen=6 active_threads=0 tvp=NULL
> > do_unbind
> > conn=0 op=1 UNBIND
> > ++++++++++++++++++++++++++++++++++++++
> >
> > in config.xml i use
> >
> > ++++++++++++++++++++++++++++++++++++++
> > <option>
> > <name>ldaproot</name>
> > <value>admin</value>
> > </option>
> > <option>
> > <name>ldaprootpwd</name>
> > <value>root</value>
> > </option>
> > +++++++++++++++++++++++++++++++++++++
> >
>
> Do try to specify in your ldap.xml:
>
> <protocol_version>3</protocol_version>
>
> By default Debian Sarge slapd uses LDAP v3 protocol
> to
> communicate.
>
Iam using "<protocol_version>3</protocol_version>",
but i get the same behavior.
Here the first lines of ldap.xml
++++++++++++++++++++++++++++++++++++
"<openca>
<ldap>
<debug>1</debug>
<excluded_roles>
<role>publish_all_roles</role>
</excluded_roles>
<suffix>
<dn>o=test, c=DE</dn>
</suffix>
<host>localhost</host>
<port>389</port>
<!--
LDAP Protocol Version
Select your ldap version by leaving one of the
following
uncommented. Remember to check your
(/usr/local)/etc/openldap/slapd.conf for the
allow statement!
Some other options like ldaptls and ldapsasl
require LDAP v3.
If you activate TLS or SASL then OpenCA uses
LDAP v3
automatically and ignores the configuration.
-->
<protocol_version>3</protocol_version>
<!--
TLS encryption for LDAP
this works only with LDAP v3
-->
<tls>no</tls>
<!--
SASL authentication for LDAP
this works only with LDAP v3
-->
<sasl>no</sasl>
<chain>/usr/local/openra/openca/var/crypto/chain</chain>
<login>admin</login>
<passwd>root</passwd>
++++++++++++++++++++++++++++++++++++++++++++++
>
> Cheers,
>
> --
> Marc-Aur�le DARCHE
> NUXEO (Paris, France)
> http://nuxeo.com/
> Nuxeo Collaborative Portal Server (CPS)
> http://www.cps-project.org/
> Gestion de contenu web / portail collaboratif /
> logiciel libre
>
>
>
-------------------------------------------------------
> This SF.Net email is sponsored by: New Crystal
> Reports XI.
> Version 11 adds new functionality designed to reduce
> time involved in
> creating, integrating, and deploying reporting
> solutions. Free runtime info,
> new features, or free trial, at:
> http://www.businessobjects.com/devxi/728
> _______________________________________________
> Openca-Users mailing list
> [email protected]
>
https://lists.sourceforge.net/lists/listinfo/openca-users
>
___________________________________________________________
Gesendet von Yahoo! Mail - Jetzt mit 250MB Speicher kostenlos - Hier anmelden:
http://mail.yahoo.de
-------------------------------------------------------
This SF.Net email is sponsored by: New Crystal Reports XI.
Version 11 adds new functionality designed to reduce time involved in
creating, integrating, and deploying reporting solutions. Free runtime info,
new features, or free trial, at: http://www.businessobjects.com/devxi/728
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
