[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Pb with search on objectClass
hello. We're trying migrating from 1.2.11 to 2.0.6
ou base has been reconstructed with LDIF files. all seems ok so far,
with gq I can browse all my bases.
but proftpd or libnss fail authentifying against our new base... (was
working with openldap 1.2.11)
it seems that's because the search on objectClass fail for posixAccount
see :
ldapsearch -v -h localhost -p 390 -b ou=Comptes,o=CIE,c=fr
"(&(uid=ydupont)(objectClass=top))"
ldap_init( localhost, 390 )
filter: (&(uid=ydupont)(objectClass=top))
requesting: ALL
version: 2
#
# filter: (&(uid=ydupont)(objectClass=top))
# requesting: ALL
#
# ydupont, Admins, Comptes, CIE, FR
dn: uid=ydupont, ou=Admins, ou=Comptes, o=CIE, c=FR
uid: ydupont
cn: Yann Dupont
gidNumber: 100
uidNumber: 270
mail: ydupont@ensinfo.univ-nantes.fr
homeDirectory: /home/CIE/ydupont
loginShell: /bin/bash
description: Administrateur Linux
objectClass: top
objectClass: account
objectClass: posixAccount
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
It's OK. see the multiple entries in objectClass
Now I try searching with posixAccount
ldapsearch -v -h localhost -p 390 -b ou=Comptes,o=CIE,c=fr
"(&(uid=ydupont)(objectClass=posixAccount))"
ldap_init( localhost, 390 )
filter: (&(uid=ydupont)(objectClass=posixAccount))
requesting: ALL
version: 2
#
# filter: (&(uid=ydupont)(objectClass=posixAccount))
# requesting: ALL
#
# search result
search: 2
result: 0 Success
# numResponses: 1
It's something I can't explain.
Seems like the test is done on the first objectClass, and the others are
ignored.
There is probably something simple in slpd.conf I forgot,
but what ?
yann Dupont.
\|/ ____ \|/ Fac. des sciences de Nantes-Linux-Python-IPv6-ATM-BONOM....
"@'/ ,. \@" Tel :(+33)
[0]251125865(AM)[0]251125857(PM)[0]251125868(Fax)
/_| \__/ |_\ Yann.Dupont@sciences.univ-nantes.fr
\__U_/ http://www.unantes.univ-nantes.fr/~dupont