[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: openldap V2.1.n and referral



A 19:10 21/10/02 -0700, Kurt D. Zeilenga a écrit :
>At 04:46 AM 2002-10-21, Vincent MATHIEU wrote:
>>The referal machanism work's perfectly if the third server is an openldap V2.0.x, but it doesn't work if the third server is an openldap V2.1.6
>>
>>with ldapsearch :
>>
>>ldapsearch -x -D  -H ldapr://ldap.univ-nancy2.fr -s sub -b dc=univ-nancy2,dc=fr -P 3 (uid=vmath999)
>
>ldapr?  -D without a bind DN?  

Sorry, I mage a mistake with the command copy.

The real command was :
ldapsearch -x  -C -H ldap://servetud.univ-nancy2.fr:396 -s sub -b dc=univ-nancy2,dc=fr -P 3 "(uid=vmath999)"

And the log from openldap 2.1.6 (loglevel = 768) :
Oct 22 08:39:19 servetud ldapEss[10481]: daemon: conn=0 fd=9 connection from IP=194.214.218.198:1886 (IP=0.0.0.0:396) accepted.
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=0 BIND dn="" method=128
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=0 RESULT tag=97 err=0 text=
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=1 SRCH base="dc=univ-nancy2,dc=fr" scope=2 filter="(uid=vmath999)"
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 op=2 UNBIND
Oct 22 08:39:19 servetud ldapEss[10483]: conn=0 fd=9 closed

And logs frop openldap 2.0.25, with the same config :

Oct 22 08:36:51 etudiant ldapReferral[5398]: daemon: conn=0 fd=9 connection from IP=194.214.218.198:1763 (IP=0.0.0.0:390) accepted.
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=0 BIND dn="" method=128
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=0 RESULT tag=97 err=0 text=
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=1 SRCH base="dc=univ-nancy2,dc=fr" scope=2 filter="(uid=vmath999)"
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=1 ENTRY dn="ou=Etudiants,dc=univ-nancy2,dc=fr"
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=1 ENTRY dn="ou=Pers,dc=univ-nancy2,dc=fr"
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=1 SEARCH RESULT tag=101 err=0 text=
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=0 op=2 UNBIND
Oct 22 08:36:51 etudiant ldapReferral[5401]: conn=-1 fd=9 closed

>I suggest you experiement with -M (manageDsaIT) and additional
>server-side logging to see what's up.

It does'nt work with openldap V2.1.6 :

command :
ldapsearch -x -M -C -D "uid=bond999,dc=univ-nancy2,dc=fr" -W -H ldap://servetud.univ-nancy2.fr:396 -s sub -b dc=univ-nancy2,dc=fr -P 3 "(uid=vmath999)"

result :
# extended LDIF
#
# LDAPv3
# filter: (uid=vmath999)
# requesting: ALL
# with manageDSAit control
#
 
# search result
search: 2
result: 0 Success
 
# numResponses: 1


log :
Oct 22 09:08:46 servetud ldapEss[10481]: daemon: conn=11 fd=17 connection from IP=194.214.218.202:55870 (IP=0.0.0.0:396) accepted.
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=0 BIND dn="uid=bond999,dc=univ-nancy2,dc=fr" method=128
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=0 RESULT tag=97 err=0 text=
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=1 SRCH base="dc=univ-nancy2,dc=fr" scope=2 filter="(uid=vmath999)"
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 op=2 UNBIND
Oct 22 09:08:46 servetud ldapEss[10483]: conn=11 fd=17 closed 




I use the referal mechanism with auth-ldap (apache). It does't work any more with openldap V2.1.6
So, I can't migrate my servers.


>I note that I added another test to the test suite which tests
>subordinate referral cases.  Found no problems.  This was with
>HEAD, but 2.1.8 is same in this area... and likely so is 2.1.6.

I've just installed the V2.1.8 . The tests suite works, but I always have the same problems

Vincent


-- 
Vincent MATHIEU                 
CRI - Universite NANCY 2            | Email : Vincent.Mathieu@univ-nancy2.fr
Pole Lorrain de Gestion             | Tel   : (33) 03.83.39.64.06
13, Rue Michel Ney - C.O. 75        | Fax   : (33) 03.83.39.64.43
54013 Nancy Cedex.   FRANCE