[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Eudora 4.2 and openldap authentication not working
My ldif file entries all look like:
dn: cn=jnoviell, location=Dorval, o=Matrox,c=CA
objectclass: Person
username: jnoviell
cn: Joe Novielli
mail: jnoviell@matrox.com
location: Dorval
givenname: Joe
sn: Novielli
userPassword: {crypt}DhdfFKoszdfrE
telephoneNumber: xxx-xxx-xxxx ext: 0077
status: Active User
My member entry (those users that can access our ldap server) looks like this:
dn: cn=people_who_have_access,o=Matrox,c=CA
objectclass: groupOfnames
objectclass: top
member: cn=jnoviell,location=Dorval,o=Matrox,c=CA
member: cn=other_guy,location=Dorval,o=Matrox,c=CA
cn: people_who_have_access
My ACL looks like this:
access to attr=userpassword
by * compare
access to *
by group="cn=people_who_have_access,o=Matrox,c=CA" read
by * none
------------------------------------
Strange that it worked fine in 4.01 and not in 4.2.
Am I missing something???
My Eudora 4.2 has the following 2 options:
1) Word-wise Search Filter: (default is: (cn=*^0*) )
2) Whole-query Search Filter: (default is blank)
At 11:30 AM 07/09/99 -0400, you wrote:
What's the record look like, and what are your access restrictions?
Looks like in the first, you bind as a user, but in the second,
Eudora is only binding as anonymous, so if for some reason
anonymous can't read the cn field, that could be it. Also,
the first looks at cn, givenname, and sn. The second only
looks at the cn attribute. Normally I would expect cn would be
a combination of givenname and sn, but it doesn't have to be.
The first (access control issues) could just be a matter of your
Eudora configuration, while the second looks like a change in the
behaviour of Eudora.
Joe Novielli wrote:
> Greetings all,
>
> I use to have Eudora 4.01 configure to use my ldap server with
> authentication to retrieve my info.
>
> All worked well, until I upgrade to Eudora 4.2.
>
> My ldap log files looks like this:
>
> 1) Good search for "Matt" (using Eudora 4.02):
>
> Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=135 op=1 RESULT err=0
> tag=101 nentries=0
> Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=136 fd=14 connection
> from dyn-2-30.matrox.com (192.168.2.180) accepted.
> Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=135 op=-1 fd=6 closed
> errno=0
> Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=136 op=0 BIND
> dn="CN=JNOVIELL,LOCATION=DORVAL,O=MATROX,C=CA" method=128
> Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=136 op=0 RESULT err=0
> tag=97 nentries=0
> Jul 7 12:15:25 pluton.matrox.com slapd[15816]: conn=136 op=1 SRCH
> base="LOCATION=DORVAL,O=MATROX,C=CA" scope=2
> filter="(|(cn=MATT*)(givenname=MATT*)(sn=MATT*))"
> Jul 7 12:15:32 pluton.matrox.com slapd[15816]: conn=136 op=1 RESULT err=0
> tag=101 nentries=3
> Jul 7 12:15:32 pluton.matrox.com slapd[15816]: conn=136 op=-1 fd=14 closed
> errno=0
>
> 2) Using Eudora 4.2 searching for "Matt" yields:
>
> Jul 8 15:50:42 pluton.matrox.com slapd[15816]: conn=177 fd=6 connection
> from dyn-2-30.matrox.com (192.168.2.180) accepted.
> Jul 8 15:50:42 pluton.matrox.com slapd[15816]: conn=177 op=0 BIND dn=""
> method=128
> Jul 8 15:50:42 pluton.matrox.com slapd[15816]: conn=177 op=0 RESULT err=0
> tag=97 nentries=0
> Jul 8 15:50:42 pluton.matrox.com slapd[15816]: conn=177 op=1 SRCH
> base="LOCATION=DORVAL,O=MATROX,C=CA" scope=2 filter="(cn=*MATT*)"
> Jul 8 15:50:47 pluton.matrox.com slapd[15816]: conn=177 op=1 RESULT err=0
> tag=101 nentries=0
> Jul 8 15:50:47 pluton.matrox.com slapd[15816]: conn=177 op=3 UNBIND
> Jul 8 15:50:47 pluton.matrox.com slapd[15816]: conn=177 op=3 fd=6 closed
> errno=0
>
>
----------------------------------------------------------------------------
> -------------------------------------------------
>
> Is this a problem with the newer version of Eudora or ????
>
> Any suggestions would be appreciated, as users tend to upgrade to the
> latest thing.
>
> I'm running openLDAP 1.2.2 on Solaris 2.6 with UNIX passwords style
> authentication .
--
Jeff Clowser
mailto:jclowser@aerotek.com Hanover MD 21076 USA
Phone: (410)-579-4328 7312 Parkway Drive
--------------------------------------------------------------------------
Joe Novielli x.7703 Email: jnoviell@matrox.com
MIS Department
Matrox Electronic Systems Inc. http://www.matrox.com
1055 St-Régis Tel: (514) 822-6000 x. 7703
Dorval, Québec Fax: (514) 822-6262
Canada, H9P 2T4
--------------------------------------------------------------------------