On Mon, Dec 17, 2012 at 11:08:11AM -0600, Dan White wrote:
># su -m someone -c 'ldapwhoami -U uid=someone,dc=example,dc=net \
> -Y PLAIN -H ldaps://ldap.example.net'
That command doesn't make sense. '-U uid=someone,dc=example,dc=net'
should be '-U someone' instead,
I trired that and got the same result.
and you should create new authz-regexp rules to map a
sasl PLAIN identity of 'someone' to uid=someone,dc=example,dc=net.
I did this. With debug acl level, I can see that the
uid=someone,dc=example,dc=net is tired for auth, but it fails.