Re: Referrals without host:port in LDAP url
Jorge Ortiz Claver wrote: Hi, I have a data tree I want to replicate. The only way I can do it is to chop the tree out into different branches but I would like to keep a virtual tree for the applications that are currently working against my directory. I've created some new databases and some smart referalls like ref: ldap:///ou=newobjects,o=objects The problem is that it seems the ldap_search_s function can't follow this referrals without host:port (ldapsearch tool in Linux follows the referrals properly but using the C++ API it doesn't work). Is there anyway to create the referral without references to host:port, I mean to make the referral point to the another entry at the same server instance and to get the same behaviour in any server. Netscape Directory Server 6.1 and later has a feature called Virtual DIT Views. This allows you to create virtual hierarchies from a flat dataspace. For more information: http://enterprise.netscape.com/docs/directory/61/deploy/dit.htm#1005893 Thanks in advance Jorge Ortiz
LDAP url
If i enter any good ldap url (ldap://lide.atlas.cz/o=Intranet) in mozilla i'v got a message ldap is not a registered protocol. In konquerror it work. (Excuse my bad englisch, i'm from Czech) Johny
Re: ldap url
dhiva wrote: ldap://ldap.xx.org/o=airius??sub does it work with mozilla 1.0?? I know this works with netscape 4.79... There is code in the tree to do that, but it's got some threadsafety issues, so it's not turned on by default just yet. You can turn it on by building with --enable-ldap-experimental, but this does add a bit of crash risk. Dan
LDAP URL
I have problem using a URL to connect to a directory server using LDAP. I have one servier with Exchange 2000 (sauron), and other using Windows 2000 with Active Directory (dlya). When I use this URL, I don't have problem: ldap://sauron:389 But, when I try with this, I get an error when I do a query ldap://dlya:389 What is wrong?? Thanks for your time, Nicolás Castagnet [EMAIL PROTECTED]
Re: ldap url question...
On Wed, Dec 20, 2000 at 09:05:22PM +, Dan Mosedale wrote: [EMAIL PROTECTED] writes: Hi, Can anyone out there tell me whether it is possible to put authetication information in a ldap uri, i.e. to bind (as a non-anonymous user) to a directory server using a ldap uri??? It is possibly to specify this information with the "bindname" extension. And example would be ldap:///??sub??bindname=cn=Manager%2co=Foo See RFC 2255 for details. Note, however, that this is not yet widely implemented. Netscape 4.x doesn't support it, nor does the mozilla.org LDAP C SDK, nor the mozilla browser URL handler (yet). Also, note that bindname only allows you to add a DN and no password. Hence the only thing you can use it for is unauthenticated bind. So whatever bindname you attach it is only usable as information for the server to log, not for authenticating to the server. The URL RFC (RFC173) defines a way of specifying username and password: //user:password@host:port/url-path But this was back in 1994, 1997 when RFC2255 was written clear text passwords had become a no-no. So the upshot of all this is that there exists a standard for how to specify username and passwords in a LDAP URL. But it also clear that it is usable under very limited circumstances, for instance if you are guarding the connection by using TLS (RFC2829). -- Roland - Jegerveien 25Telephone: +47 23 08 29 96 0777 OsloMobile(NO): +47 90 66 44 52 Norway Mobile(SE): +46 70 52 04 20 3
ldap url question...
Hi, Can anyone out there tell me whether it is possible to put authetication information in a ldap uri, i.e. to bind (as a non-anonymous user) to a directory server using a ldap uri??? Say I have a netscape directory server the following structure: dc=com,dc=mycompany,ou=SomeUnit,cn=SalesPersons,uid=fred,. Imagine there are aci's set for ou=SomeUnit, so that only fred and his fellow friends in his unit can access this information. In order to do that they use a userid (uid) and a password when they bind. Say I want to retrieve information, e.g. get the names of all salespersons, I need to authenticate, can I do that in a ldap uri, for example in netscape 4.7, like: ldap://servername:portnr/cn%3DSalesPersons%2Dou%3CSomeUnit%2Ddc%3Cmycompany%2D dc%3Ccom(Now what has to be put here in order to autheticate so I can query for the names of all salespersons). Cheers, Roger __ Get your own FREE, personal Netscape Webmail account today at http://webmail.netscape.com/
Re: ldap url question...
[EMAIL PROTECTED] writes: Hi, Can anyone out there tell me whether it is possible to put authetication information in a ldap uri, i.e. to bind (as a non-anonymous user) to a directory server using a ldap uri??? It is possibly to specify this information with the "bindname" extension. And example would be ldap:///??sub??bindname=cn=Manager%2co=Foo See RFC 2255 for details. Note, however, that this is not yet widely implemented. Netscape 4.x doesn't support it, nor does the mozilla.org LDAP C SDK, nor the mozilla browser URL handler (yet). Dan