[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: some questions.

To: Adam Shand <larry@spack.org>, OpenLDAP Software <openldap-software@OpenLDAP.org>
Subject: Re: some questions.
From: Stephan Siano <stephan.siano@suse.de>
Date: Wed, 14 Feb 2001 08:08:26 +0100
In-reply-to: <Pine.LNX.4.32.0102131837200.424-100000@heyzeus.spack.org>
References: <Pine.LNX.4.32.0102131837200.424-100000@heyzeus.spack.org>

Am Mittwoch, 14. Februar 2001 03:39 schrieb Adam Shand:
> okay so i finally found some references on the mailing list that state
> that referals are always followed anonymously.  so how is this supposed to
> work?
>
> i'm using solaris 8's nss/pam ldap, if i want the user to be able change
> their password it means that the only ldap server i can specify is the
> master one for everything.
>
> how to i make queries go to the slave and changes go to the master if you
> can't do authenticated referrals?
>
> how are people solving this problem?

Hi,

in C you can define a rebind function that can be registered as callback for 
reauthentication when chasing referrals with the following call:

ldap_set_rebind_proc(ld,(LDAP_REBIND_PROC *) &rebindproc);


for simple authentication the rebind function may look as follows (of course 
ldap_binddn and ldap_bindpassw must be set somewhere appropriate and the 
whole procedure might include some security problem since the password is 
stored somewhere...

int rebindproc( LDAP *ld, LDAP_CONST char *url, int request, ber_int_t msgid)
{
	return ldap_simple_bind_s( ld, ldap_binddn, ldap_bindpassw);
}

Yours
Stephan Siano

-- 
Stephan Siano                           Mail:  Stephan.Siano@suse.de
SuSE Linux Solutions AG                 Phone: 06196 50951 31
Mergenthalerallee 45-47			Fax:   06196 409607
D-65760 Eschborn

References:
- Re: some questions.
  - From: Adam Shand <larry@spack.org>

Prev by Date: Re: Replication Log Problem
Next by Date: problems with PHP search
Index(es):
- Chronological
- Thread