[Zope-dev] LDAP on Zope 2.5.0b2
Hi, Has anybody successfully installed LDAPUserFolder on Zope2.5.0b2 (on Linux). When I compile python-ldap module and install it alongwith LDAPUserFolder, it shows as a installed product in the Zope management screen, but when I try to connect to the LDAP server (openldap 2.0.18) also running on the same machine, it says 'connection settings not ok...'. Interestingly, when I install LDAPUserFolder on Zope 2.4.3 running on a WinNT 4.1 workstation and use the same connection settings, it connects successfully and I'm able to query the LDAP database. Any ideas why..?? ~Peeyush.
Re: [Zope-dev] LDAP on Zope 2.5.0b2
i have it running on 2.5beta3 without a problem. try upgrading your zope. jens On Friday, January 4, 2002, at 02:29 , Peeyush Garg wrote: Hi, Has anybody successfully installed LDAPUserFolder on Zope2.5.0b2 (on Linux). When I compile python-ldap module and install it alongwith LDAPUserFolder, it shows as a installed product in the Zope management screen, but when I try to connect to the LDAP server (openldap 2.0.18) also running on the same machine, it says 'connection settings not ok...'. Interestingly, when I install LDAPUserFolder on Zope 2.4.3 running on a WinNT 4.1 workstation and use the same connection settings, it connects successfully and I'm able to query the LDAP database. Any ideas why..?? ~Peeyush. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LDAP on Zope 2.5.0b2
Hi Jens, I get the same error message with installation of 2.5.0b3. Do you have the latest files checked out for python-ldap module? Any other clues? I've tried several combinations and not any luck yet. ~Peeyush. - Original Message - From: Jens Vagelpohl [EMAIL PROTECTED] To: Peeyush Garg [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Friday, January 04, 2002 12:30 PM Subject: Re: [Zope-dev] LDAP on Zope 2.5.0b2 i have it running on 2.5beta3 without a problem. try upgrading your zope. jens On Friday, January 4, 2002, at 02:29 , Peeyush Garg wrote: Hi, Has anybody successfully installed LDAPUserFolder on Zope2.5.0b2 (on Linux). When I compile python-ldap module and install it alongwith LDAPUserFolder, it shows as a installed product in the Zope management screen, but when I try to connect to the LDAP server (openldap 2.0.18) also running on the same machine, it says 'connection settings not ok...'. Interestingly, when I install LDAPUserFolder on Zope 2.4.3 running on a WinNT 4.1 workstation and use the same connection settings, it connects successfully and I'm able to query the LDAP database. Any ideas why..?? ~Peeyush. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LDAP on Zope 2.5.0b2
i only ever use python-ldap 1.10alpha3, that's all i test against because it's a known quantity. anything else is way too much in flux. jens On Friday, January 4, 2002, at 05:25 , Peeyush Garg wrote: Hi Jens, I get the same error message with installation of 2.5.0b3. Do you have the latest files checked out for python-ldap module? Any other clues? I've tried several combinations and not any luck yet. ~Peeyush. - Original Message - From: Jens Vagelpohl [EMAIL PROTECTED] To: Peeyush Garg [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Friday, January 04, 2002 12:30 PM Subject: Re: [Zope-dev] LDAP on Zope 2.5.0b2 i have it running on 2.5beta3 without a problem. try upgrading your zope. jens On Friday, January 4, 2002, at 02:29 , Peeyush Garg wrote: Hi, Has anybody successfully installed LDAPUserFolder on Zope2.5.0b2 (on Linux). When I compile python-ldap module and install it alongwith LDAPUserFolder, it shows as a installed product in the Zope management screen, but when I try to connect to the LDAP server (openldap 2.0.18) also running on the same machine, it says 'connection settings not ok...'. Interestingly, when I install LDAPUserFolder on Zope 2.4.3 running on a WinNT 4.1 workstation and use the same connection settings, it connects successfully and I'm able to query the LDAP database. Any ideas why..?? ~Peeyush. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope ) ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
[Zope-dev] LDAP
Hi. I'm struggeling with zope, cmf and ldap. I started of with a fresh RH7.2 installation. I ran the openldap migration scripts. Then created users using the posixAccout and posixGroup class. These classes seem to be different from what is recommended in the LDAPUserFolder product. Anyway, I have added an LDAPUserFolder, and I am able to add new new users, browse users, add groups (LDAPUserFolder cannot handle posixGroups). What I can't do though, is login using this info. If I from the management page in LDAPUserolder changes password, the encryption will change from the current Crypt, to SHA. When it is SHA, I cannot login on using pam. But even if I have sha, logging in via LDAPUserFolder still doesn't work. So, does anyone have a clue of whats going on? :) I haven't used ldap before, so it might just be me doing something stupid... all I want is an ldap database, using classes that work both in zope and with pam. /Magnus ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LDAP
magnus, the LDAPUserFolder has SHA password handling hardcoded into it. in order for it to produce crypy passwords you'd have to look up the few places where it creates a password and change it to use crypt. i chose SHA because to the LDAP server itself it does not make any difference whether it's SHA or CRYPT and SHA is marginally more secure. as far as your login problems go, look up a user record on the Users tab and see if that record has any roles associated with it. you must also ensure that the user record you are trying to retrieve has permissions inside LDAP to look up itself and permission to look up the groups associated with it. the ACLs in slapd.conf govern that piece. you could use ldapsearch to emulate these searches by binding with the respective user's DN and passowrd and looking up its own details as well as its own groups. jens P.S.: LDAP and trying to use it for zope authentication can be very painful to set up if you're not experienced with LDAP first. there are a *lot* of factors and pitfalls involved. you must have a good understanding about how LDAP works, knowledge about LDAP schemas and LDAP ACLs. On Thursday, November 22, 2001, at 05:33 , Magnus Heino wrote: Hi. I'm struggeling with zope, cmf and ldap. I started of with a fresh RH7.2 installation. I ran the openldap migration scripts. Then created users using the posixAccout and posixGroup class. These classes seem to be different from what is recommended in the LDAPUserFolder product. Anyway, I have added an LDAPUserFolder, and I am able to add new new users, browse users, add groups (LDAPUserFolder cannot handle posixGroups). What I can't do though, is login using this info. If I from the management page in LDAPUserolder changes password, the encryption will change from the current Crypt, to SHA. When it is SHA, I cannot login on using pam. But even if I have sha, logging in via LDAPUserFolder still doesn't work. So, does anyone have a clue of whats going on? :) I haven't used ldap before, so it might just be me doing something stupid... all I want is an ldap database, using classes that work both in zope and with pam. /Magnus ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope ) ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )