Hi OpenLDAP users/developers:
I have successfully set up OpenLDAP on my server. It's purpose will be
to serve addresses through Netscape Messenger on our intranet. This
works fine, but: I want to set up user authentication. I mean the NEED
for Netscape to log in to OpenLDAP before it can view any records (_not_
login auth via LDAP!). OK, my access rules are the following:
--- CUT ---
defaultaccess none
access to attr=userpassword
by self write
by * none
access to *
by self write
by dn=".+" read
by * none
--- CUT ---
OK. Now no user can see anything. Exactly what should happen, to an
_un_autorized user. Now: How/Where do I have to create the records for
the users that should be able to login? I tried the following ldif:
--- CUT ---
dn: uid=tim,dc=niemueller,dc=de
objectClass: person
objectClass: inetOrgPerson
objectClass: organizationalPerson
cn: Tim Niemueller
sn: Niemueller
givenName: Tim
uid: tim
mail: tim@niemueller.de
l: City
st: State
postalCode: 88888
street: Streetname 4
telephonenumber: 01234/56789
userpassword: mysecretpassword
--- CUT ---
The password is not encrypted. Can/Must I do this somehow?
After that I set Netscape to use User/Pass Authentication. I entered tim
as user and mysecretpassword as password. I got "Referral hop limit
exceeded (0x61)". But I have not set any referrals!
What is this SASL stuff for?
Any help to get this done would be greatly appreciated.
Thanx in advance,
Tim
--
Tim Niemueller <tim@niemueller.de> www.niemueller.de
=================================================================
Imagination is more important than knowledge. (Albert Einstein)