[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Unix id command and Openldap

To: <marg@rz.tu-clausthal.de>
Subject: RE: Unix id command and Openldap
From: <okossuth@antel.com.uy>
Date: Thu, 18 Dec 2008 14:14:43 -0200
Cc: openldap-technical@openldap.org, andrew.findlay@skills-1st.co.uk, claus.kick@siemens.com
Content-class: urn:content-classes:message
Importance: normal
References: <BEF222490D9E254AAA8A5B6C7EAECFD5114CEAF4@sede-mail-01.net.in.iantel.com.uy> <4949F182.5010704@rz.tu-clausthal.de>
Thread-index: Aclg3Gg2jNQJMYOtTCK6EXb4s1oxpQAT1Rwc
Thread-topic: Unix id command and Openldap

1. yes you are right, i dont need authentication
2. i commented out those lines but still i dont get supplemantray groups defined on the ldap server
by using the id command :(

What else could it be?

Saludos,

Oskar Kossuth E.

Administrador Unix
okossuth@servicios.antel.com.uy
ANTEL telecomunicaciones

-----Mensaje original-----
De: openldap-technical-bounces+okossuth=antel.com.uy@OpenLDAP.org en nombre de Christian Marg
Enviado el: jue 12/18/2008 3:45
Para: Kossuth Espinosa, Oskar
CC: claus.kick@siemens.com; andrew.findlay@skills-1st.co.uk; openldap-technical@openldap.org
Asunto: Re: Unix id command and Openldap

Hello,

okossuth@antel.com.uy wrote:
[...]
> vmlx-ldapauth-test:/home/okossuth # ldapsearch -x -D 'cn=admin,dc=vmlx-ldapauth-test,dc=in.iantel.com.uy' -W -b 'ou=Teleinformatica,dc=vmlx-ldapauth-test,dc=in.iantel.com.uy' cn=mysql
[...]

So, from what I see, the needed LDAP entries are there, but:

1. Do you need authentication to list the groups? Eg. try that without
the "-D" and "-W", because you don't specify a bindDN and bindPW in the
"ldap.conf" file.
2. In the "ldap.conf" file there are two lines, "nss_map_attributes" and
"nss_map_objectclass" which aren't commented out and _might_ confuse
things for nss_ldap.

bye
Christian
--
Christian Marg mail : mailto:marg@rz.tu-clausthal.de
Rechenzentrum TU Clausthal web : http://www.tu-clausthal.de
D-38678 Clausthal-Zellerfeld fon : 05323/72-2626
Germany jabber: ifcma@jabber.tu-clausthal.de

El presente correo y cualquier posible archivo adjunto está
dirigido únicamente al destinatario del mensaje y contiene información
que puede ser confidencial. Si Ud. no es el destinatario correcto por
favor notifique al remitente respondiendo anexando este mensaje y elimine
inmediatamente el e-mail y los posibles archivos adjuntos al mismo de su
sistema. Está prohibida cualquier utilización, difusión o copia de este
e-mail por cualquier persona o entidad que no sean las específicas
destinatarias del mensaje. ANTEL no acepta ninguna responsabilidad con
respecto a cualquier comunicación que haya sido emitida incumpliendo
nuestra Política de Seguridad de la Información.
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
This e-mail and any attachment is confidential and is intended solely for
the addressee(s). If you are not intended recipient please inform the
sender immediately, answering this e-mail and delete it as well as the
attached files. Any use, circulation or copy of this e-mail by any person
or entity that is not the specific addressee(s) is prohibited. ANTEL is
not responsible for any communication emitted without respecting our
Information Security Policy.

References:
- RE: Unix id command and Openldap
  - From: <okossuth@antel.com.uy>
- Re: Unix id command and Openldap
  - From: Christian Marg <marg@rz.tu-clausthal.de>

Prev by Date: Re: Workflow / tools / practice working on a new shema : reload to cn=config or editing cn=config in place ?
Next by Date: Re: Workflow / tools / practice working on a new shema : reload to cn=config or editing cn=config in place ?
Index(es):
- Chronological
- Thread