[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Connecting from Netscape



Hi,

Looks like you have a problem with the access directives.  You can give 
this a try:

access to dn=".*,ou=Roaming,o=mda,c=fr"
        by dn="cn=Manager,o=mda,c=fr" write
        by dnattr=owner write
        by * compare

This is just an example.  You should (or must if you care about security) 
read the "OpenLDAP Administrator's Guide".

Cheers.

Dejan

Please respond to Rosaire AMORE <r.amore@free.fr> 
Sent by:        owner-openldap-software@OpenLDAP.org
To:     openldap-software@OpenLDAP.org
cc: 
Subject:        Connecting from Netscape


I tried hard to connect from Netscape to a openldap server installed on
a Linux box (Mandrake 7.2). Every seems working fine, and no compilation
errors.
Then, i launched slapd and did this:

[root@passerelle openldap]# ldapadd -x -D "cn=Manager,o=mda,c=fr" -W -f
user2.ldif
Enter LDAP Password:
adding new entry "o=mda,c=fr"

adding new entry "cn=Manager, o=mda, c=fr"

adding new entry "ou=Netscape Roaming, o=mda, c=fr"

adding new entry "cn=rosaireamore, o=mda, c=fr"

adding new entry "cn=rosaireamore, ou=Netscape Roaming, o=mda, c=fr"

[root@passerelle openldap]# ldapsearch -LLL "(cn=rosaireamore)" cn sn
No such object (32)
[root@passerelle openldap]# ldapsearch -x -b '' -s sub '(objectclass=*)'
version: 2

#
# filter: (objectclass=*)
# requesting: ALL
#

# search result
search: 2
result: 32 No such object

# numResponses: 1
 
...............................


I don't know where (if) there are specific logs. All i found was this
(in /var/log/syslog, on the server) :

 /var/log/syslog
Mar 18 07:35:04 passerelle slapd[31124]: daemon: conn=8 fd=9 connection
from IP=192.168.0.5:1257 (IP=0.0.0.0:34049) accepted.
Mar 18 07:35:04 passerelle slapd[31126]: conn=8 op=0 BIND
dn="CN=ROSAIREAMORE,O=MDA,C=FR" method=128
Mar 18 07:35:04 passerelle slapd[31126]: conn=8 op=0 RESULT tag=97
err=50 text=
Mar 18 07:35:04 passerelle slapd[31127]: conn=8 op=1 UNBIND
Mar 18 07:35:04 passerelle slapd[31127]: conn=-1 fd=9 closed
Mar 18 07:35:04 passerelle slapd[31124]: daemon: conn=9 fd=9 connection
from IP=192.168.0.5:1258 (IP=0.0.0.0:34049) accepted.
Mar 18 07:35:04 passerelle slapd[31126]: conn=9 op=0 BIND
dn="CN=ROSAIREAMORE,O=MDA,C=FR" method=128
Mar 18 07:35:04 passerelle slapd[31126]: conn=9 op=0 RESULT tag=97
err=50 text=
Mar 18 07:35:04 passerelle slapd[31127]: conn=9 op=1 UNBIND
Mar 18 07:35:04 passerelle slapd[31127]: conn=-1 fd=9 closed

Seems that i can't bind.

extract of my slapd.conf :
=============================
include     /usr/local/etc/openldap/schema/core.schema
include     /usr/local/etc/openldap/schema/netscape.schema
....................
access to *
          by self write
          by users read
....................
database    ldbm
suffix      "o=mda,c=fr"
# mda is the name of my virtual society
rootdn      "cn=Manager,o=mda,c=fr"
rootpw {SSHA}8ZHB0jB9BukkYlRzXIXgGxS0qPhRdiMO
directory   /usr/local/var/openldap-ldbm
# Indices to maintain
index   objectClass eq
=============================

my ldif file
=============================
# Organization for Example Corporation
dn: o=mda,c=fr
objectClass: organization
o: mda
description: Societe MDA

# Organizational Role for Directory Manager
dn: cn=Manager, o=mda, c=fr
objectClass: organizationalRole
cn: Manager
description: Gestionnaire du Directory

dn: ou=Netscape Roaming, o=mda, c=fr
objectClass: organizationalUnit
ou: Netscape Roaming

dn: cn=rosaireamore, o=mda, c=fr
objectClass: person
cn: rosaireamore
sn: amore
userpassword: {SSHA}BHwjN25C0xSJVmk4iiU9mk3U2i1yxbDQ

dn: cn=rosaireamore, ou=Netscape Roaming, o=mda, c=fr 
objectClass: nsLIProfile
nsLIProfileName: rosaireamore
nsLIPrefs: prefamore
uid: amore
owner: cn=rosaireamore, o=mda, c=fr
=============================

That's all for the server side. Something that seems starnge to me is
the output of ldapsearch (don't know what it should be). I'd guess it
would be more verbose, but no errors were signaled :
=============================

ldapsearch -x -b '' -s base '(objectclass=*)' namingContexts
version: 2

#
# filter: (objectclass=*)
# requesting: namingContexts
#

# search result
search: 2
result: 0 Success

# numResponses: 1
=============================

On the client side i have this on Netscape config :
On the branch "Roaming user's User name" : cn=rosaireamore, o=mda,c=fr
In the sub branch "Server information" :
   - Adress : ldap://adresse_hote/nsLIProfileName=$USERID,ou=Netscape
Roaming, o=mda, c=fr
   - User DN : cn=$USERID, o=mda, c=fr

And then at the re-launching of Netscape, when trying to connect to the
server, the problem seen above (problem of authorization). ??? I've
tried all my passwords (amore and Manager). I've replaced $USERID by its
value (rosaireamore). Nothing works.

Thanks for any idea.
Rosaire AMORE (sorrow...).



Seems that i can't bind.
Any idea?
Thanks 
Rosaire