[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Bind but no succesful search
Dear List,
My problem:
I can search my ldap database with ldapseach -x etc.
I added sasl-md5 authentication (although by default my server prefers
OTP for reason or another) and when I search the database, the logfile
responds with:
\Apr 23 12:18:41 DELL slapd[28600]: conn=5 fd=9 ACCEPT from
IP=10.7.0.3:33224 (IP=0.0.0.0:389)
Apr 23 12:18:41 DELL slapd[28602]: conn=5 op=0 BIND dn="" method=163
Apr 23 12:18:43 DELL slapd[28602]: conn=5 op=1 BIND dn="" method=163
Apr 23 12:18:43 DELL slapd[28602]: conn=5 op=1 BIND authcid="root@dell"
Apr 23 12:18:43 DELL slapd[28602]: conn=5 op=1 BIND
dn="uid=root,cn=dell,cn=digest-md5,cn=auth" mech=DIGEST-MD5 ssf=128
Apr 23 12:18:43 DELL slapd[28602]: conn=5 op=2 SRCH
base="dc=a1informatisering,dc=nl" scope=2 filter="(objectClass=*)"
Apr 23 12:18:43 DELL slapd[28602]: conn=5 op=2 SRCH attr=base
Apr 23 12:18:43 DELL slapd[28602]: conn=5 op=2 SEARCH RESULT tag=101
err=0 nentries=0 text=
Apr 23 12:18:43 DELL slapd[28602]: conn=5 op=3 UNBIND
Apr 23 12:18:43 DELL slapd[28602]: conn=5 fd=9 closed
I have the impression that binding to the database works.
However I get no usuable responds back to my query:
ldapsearch -U root@dell -Y digest-md5 '(objectclass=*)' -b
'dc=a1informatisering,dc=nl'
Here is my current slapd.conf:
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/misc.schema
include /usr/local/etc/openldap/schema/openldap.schema
pidfile /var/run/slapd.pid
argsfile /var/run/slapd.args
access to attr=userPassword
by self write
by anonymous auth
by dn="cn=root,dc=a1informatisering,dc=nl" write
by * none
access to attr=sn,cn
by peername=10.7.0.3 read
by * none
access to * access to attr=sn,cn
by peername=10.7.0.3 read
by * none
access to *
by self write
by dn="cn=root,dc=a1informatisering,dc=nl" write
by anonymous read
#
# if no access controls are present, the default is:
Allow read by all
#
# rootdn can always write!
#######################################################################
# ldbm database definitions
#######################################################################
database ldbm
suffix "dc=a1informatisering,dc=nl"
rootdn "cn=root,dc=a1informatisering,dc=nl"
rootpw {MD5}...... #replaced by dots for newsgroup posting
directory /var/lib/ldap
index cn,mail,surname,givenname eq,subinitial
I seem to be lacking the brainpower to get this product going properly.
Best regards,
Antoine Maartens