[LDAP-interop] ldap authentication

Fri Jun 16 09:42:53 EDT 2006

Are you using pam_unix or pam_ldap?

If pam_unix, make sure both side are using unix_crypt.

Thanks!

Shelly Liu

"James Hartley" <james.hartley at gmail.com> 
Sent by: ldap-interop-bounces at fini.net
06/15/2006 07:18 PM
Please respond to
LDAP Interoperability list <ldap-interop at fini.net>

To
ldap-interop at fini.net
cc

Subject
[LDAP-interop] ldap authentication

I have followed gary tey's instructions for configuring an ldap server on 
solaris 9. I use gary's scripts and have mirrored his configuration and 
his files very closely. 

I have a users called beowulf on the system and created the appropriate 
ldif file for users and groups. 

I have successfully compiled and installed all of the required software 
and I have openldap running on my host. however I am having problems 
authenicating when I attempt to use ldapsearch to examine the following

"uid=beowulf,ou=people,dc=bogus,dc=net"

I issued the following command

/usr/local/bin/ldapsearch -x -LLL -W -b 
"uid=beowulf,ou=People,dc=bogus,dc=net" 

my password for  rootdn "cn=Manager,dc=bogus,cd=net"   plaintext,  which I 
type in when the ldapsearch command prompts me. 

and I get the following error

ldap:bind   Invalid credentials (49) 

and my access directive for the above command is 

access to dn.subtree="ou=People,dc=bogus,dc=net" 
   by self write
   by dn="cn=proxyagent,ou=profile,dc=bogus,dc=net" read
   by users read
   by anonymous auth

any clues... I thought the the rootdn has the ability to read everything. 

I can provide those that wish to see the details all of the associated 
files. 

Thanks for any suggestions_______________________________________________
LDAP-interop mailing list
LDAP-interop at fini.net
http://lists.fini.net/mailman/listinfo/ldap-interop

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.fini.net/pipermail/ldap-interop/attachments/20060616/b8ed6008/attachment.html