[Date Prev][Date Next] [Chronological] [Thread] [Top]

BINDDN in ~/.ldaprc ignored(?)

To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: BINDDN in ~/.ldaprc ignored(?)
From: Frank Thommen <f.thommen@dkfz-heidelberg.de>
Date: Tue, 9 Feb 2016 10:28:42 +0100
Organization: HD-HuB/de.NBI, DKFZ Heidelberg
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.4.0

Hi,

BINDDN in ~/.ldaprc seems to be ignored or I'm doing something wrong.

/etc/openldap/ldap.conf is empty.

~/.ldaprc is:

$ cat ~/.ldaprc
BINDDN      <myBindDN>
BASE        <myBaseDN>
URI         ldaps://<myLDAPServer>
TLS_REQCERT never
$

ldapsearch returns an error if I don't declare the bindDN on thecommandline:


$ ldapsearch -W -v cn=xyz
ldap_initialize( <DEFAULT> )
Enter LDAP Password:
SASL/GSSAPI authentication started
ldap_sasl_interactive_bind_s: Local error (-2)

additional info: SASL(-1): generic failure: GSSAPI Error: UnspecifiedGSS failure. Minor code may provide more information (No Kerberoscredentials available)

Using strace I can see, that ~/.ldaprc is accessed by ldapsearch. Soeither BINDDN is ignored or I am doing something wrong.


but works happily with the bindDN on the commandline:

$ ldapsearch -D <myBindDN> -W -v   cn=xyz
ldap_initialize( <DEFAULT> )
Enter LDAP Password:
[... ldapsearch results ...]
$

Using strace I can see, that ~/.ldaprc is accessed by ldapsearch. Soeither BINDDN is ignored or I am doing something wrong.


This is with openSUSE 13.1 and ldapsearch 2.4.33.


Cheers
Frank

Follow-Ups:
- Re: BINDDN in ~/.ldaprc ignored(?)
  - From: Dan White <dwhite@cafedemocracy.org>

Prev by Date: Re: make posixGroup auxiliary in 2.4.40
Next by Date: Re: Using TLS not seeing EXTERNAL as Using TLS not seeing EXTERNAL as supported SASL mechanism
Index(es):
- Chronological
- Thread