[Date Prev][Date Next] [Chronological] [Thread] [Top]

rwm/relay and ldapwhoami

To: openldap-technical@openldap.org
Subject: rwm/relay and ldapwhoami
From: Tim Watts <tw@dionic.net>
Date: Thu, 13 Dec 2012 19:22:53 +0000
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/17.0 Thunderbird/17.0

OK - must be missing something really basic - and I am new to LDAP...

I have a server (ldapmaster) that serves

dc=new,dc=example,dc=com

and a seperate server, ldaplegacy, that uses slapd-ldap + rwm toproxy-translate requests aimed at:


dc=old,dc=example,dc=com


So:

ldapsearch -x -b dc=old,dc=example,dc=com -H ldap://ldaplegacy/

returns
...
# me, people, old.example.com
dn: uid=me,ou=people,dc=old,dc=example,dc=com
objectClass: top
objectClass: inetOrgPerson
...

nice - exactly as expected.

But

ldapwhoami -x -W -D uid=me,ou=people,dc=old,dc=example,dc=com -Hldap://ldaplegacy/


returns (after successful bind)

dn:uid=me,ou=people,dc=new,dc=example,dc=com


Why doesn't the DN get translated?


The config section that's relevant on ldaplegacy is:

slapd.conf
###############################
...
database                relay
suffix                  "dc=old,dc=example,dc=com"
relay                   "dc=new,dc=example,dc=com"
overlay                 rwm
rwm-suffixmassage       "dc=new,dc=example,dc=com"
...
###############################

I thought I needed more magic to translate the replies, but that *looks*like it is happening with ldapsearch???



Cheers!

Tim


--
Tim Watts

Personal Blog:http://www.dionic.net/tim/


"History will be kind to me for I intend to write it."

Follow-Ups:
- Re: rwm/relay and ldapwhoami
  - From: "Pierangelo Masarati" <masarati@aero.polimi.it>

Prev by Date: Re: ppolicy and rwm/relay segfaulting
Next by Date: Re: rwm/relay and ldapwhoami
Index(es):
- Chronological
- Thread