[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#4086) rwm-mapping problem

To: openldap-its@OpenLDAP.org
Subject: (ITS#4086) rwm-mapping problem
From: dwanek@state.nd.us
Date: Thu, 13 Oct 2005 12:56:13 GMT

Full_Name: Dan Wanek
Version: 2.3.9
OS: Debian Linux - kernel 2.6..12.2
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (165.234.84.220)


I am setting up a OpenLDAP front-end proxy that allows limited access to an
Active Directory target server and am a little stumped on an issue that keeps
causing an Abort to the OpenLDAP proxy.  Any time a search filter is sent
through that is mapped to nothing the server will abort.  Here are my mappings:

overlay rwm
rwm-map objectclass  account user
rwm-map attribute    uid     sAMAccountname
rwm-map attribute    cn      name
rwm-map attribute    sn      sn
rwm-map attribute    mail    mail
rwm-map attribute    ou      company
rwm-map attribute    entry   entry
rwm-map attribute    *

So if I specify a search query that I DON?T want users to access such as
(telephoneNumber=8888*) the OpenLDAP server will abort with the following:

slapd: result.c:538: slap_send_ldap_result: Assertion `!((rs->sr_err)<0)'
failed.
Aborted

If I add the attribute that is breaking the server to the rwm-map list, like the
following, it works fine but I don?t want users to have access to that
attribute, so I?m a little stuck.
rwm-map attribute    telephoneNumber  telephoneNumber

I get the error with the MS Outlook address book and using the ldapsearch
command directly.

Any advice would be appreciated.

BTW, I?m using OpenLDAP version 2.3.9 on Debian Linux

--
Dan Wanek

Prev by Date: (ITS#4087) A draft paper on the improvement of the OpenLDAP connection management subsystem
Next by Date: (ITS#4085) ldapasswd - password hash failed
Index(es):
- Chronological
- Thread