[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: openldap V2.1.n and referral
A 19:10 21/10/02 -0700, Kurt D. Zeilenga a écrit :
>At 04:46 AM 2002-10-21, Vincent MATHIEU wrote:
>>The referal machanism work's perfectly if the third server is an openldap V2.0.x, but it doesn't work if the third server is an openldap V2.1.6
>>
>>with ldapsearch :
>>
>>ldapsearch -x -D -H ldapr://ldap.univ-nancy2.fr -s sub -b dc=univ-nancy2,dc=fr -P 3 (uid=vmath999)
>
>ldapr? -D without a bind DN?
Sorry, I mage a mistake with the command copy.
The real command was :
ldapsearch -x -C -H ldap://servetud.univ-nancy2.fr:396 -s sub -b dc=univ-nancy2,dc=fr -P 3 "(uid=vmath999)"
And the log from openldap 2.1.6 (loglevel = 768) :
Oct 22 08:39:19 servetud ldapEss[10481]: daemon: conn=0 fd=9 connection from IP=194.214.218.198:1886 (IP=0.0.0.0:396) accepted.
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=0 BIND dn="" method=128
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=0 RESULT tag=97 err=0 text=
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=1 SRCH base="dc=univ-nancy2,dc=fr" scope=2 filter="(uid=vmath999)"
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=2 UNBIND
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 fd=9 closed
And logs frop openldap 2.0.25, with the same config :
Oct 22 08:36:51 etudiant ldapReferral[5398]: daemon: conn=0 fd=9 connection from IP=194.214.218.198:1763 (IP=0.0.0.0:390) accepted.
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=0 BIND dn="" method=128
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=0 RESULT tag=97 err=0 text=
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=1 SRCH base="dc=univ-nancy2,dc=fr" scope=2 filter="(uid=vmath999)"
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=1 ENTRY dn="ou=Etudiants,dc=univ-nancy2,dc=fr"
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=1 ENTRY dn="ou=Pers,dc=univ-nancy2,dc=fr"
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=1 SEARCH RESULT tag=101 err=0 text=
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=2 UNBIND
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=-1 fd=9 closed
>I suggest you experiement with -M (manageDsaIT) and additional
>server-side logging to see what's up.
It does'nt work with openldap V2.1.6 :
command :
ldapsearch -x -M -C -D "uid=bond999,dc=univ-nancy2,dc=fr" -W -H ldap://servetud.univ-nancy2.fr:396 -s sub -b dc=univ-nancy2,dc=fr -P 3 "(uid=vmath999)"
result :
# extended LDIF
#
# LDAPv3
# filter: (uid=vmath999)
# requesting: ALL
# with manageDSAit control
#
# search result
search: 2
result: 0 Success
# numResponses: 1
log :
Oct 22 09:08:46 servetud ldapEss[10481]: daemon: conn=11 fd=17 connection from IP=194.214.218.202:55870 (IP=0.0.0.0:396) accepted.
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=0 BIND dn="uid=bond999,dc=univ-nancy2,dc=fr" method=128
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=0 RESULT tag=97 err=0 text=
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=1 SRCH base="dc=univ-nancy2,dc=fr" scope=2 filter="(uid=vmath999)"
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=2 UNBIND
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 fd=17 closed
I use the referal mechanism with auth-ldap (apache). It does't work any more with openldap V2.1.6
So, I can't migrate my servers.
>I note that I added another test to the test suite which tests
>subordinate referral cases. Found no problems. This was with
>HEAD, but 2.1.8 is same in this area... and likely so is 2.1.6.
I've just installed the V2.1.8 . The tests suite works, but I always have the same problems
Vincent
--
Vincent MATHIEU
CRI - Universite NANCY 2 | Email : Vincent.Mathieu@univ-nancy2.fr
Pole Lorrain de Gestion | Tel : (33) 03.83.39.64.06
13, Rue Michel Ney - C.O. 75 | Fax : (33) 03.83.39.64.43
54013 Nancy Cedex. FRANCE