Need help on overlay chain entries:
My 1st server tree is like this
rootdn: dc=nc,dc=com
|
dc=us,dc=nc,dc=com
|
dc=in,dc=nc,dc=com
referral
ref: ldap://ip address of second server:port
on second server:
rootdn: dc=in,dc=nc,dc=com
|
ou=People,dc=in,dc=nc,dc=com
In the client systems are configured with basedn: dc=nc,dc=com. My
requirement is to authenticate users on the second server
to the first server client systems .
I tried the followng slapd.conf in the server ; but not working
<snip>
overlay chain
chain-uri "ip address of second server:port"
chain-rebind-as-user TRUE
chain-idassert-bind bindmethod=simple
binddn="cn=Sysadmin,dc=in,dc=nc,dc=com"
credentials=secret
mode=self
database ldap
suffix ""
lastmod off
uri "ldap://ip address of second server:port"
binddn "cn=Sysadmin,dc=in,dc=nc,dc=com"
bindpw secret.
rebind-as-user
Mainly I am confused of the location of the chain overlay entries
whether it need to be in global section or in the database section or
in the backend ldap database section ?
binddn is the rootdn of the second server.
Thanks
Sandeep
