On Wed, Jun 13, 2012 at 11:43 AM, AMJAD USMAN <[email protected]> wrote: > I am using windows , not debian.
Download the same tool for Windows and run it from your dspace machine. > Secondly, our department is running other programs that are using ldap as > well. they are working well. This is only to check that everything works correctly from your machine. > As far i know, i am making any mistake in ldap parameters. > i am not clear about ldap binding, ldap-search context and object context. One possible problem - the one we're checking right now with ldapsearch - is that the administrative user who has rights to search the tree cannot bind (bind = authenticate). Another possible problem is that at a later stage, when you searched for the user who is actually trying to log in to DSpace and authenticate via LDAP is trying to bind with a DN, that is constructed incorrectly. That would indicate that some of the other parameters are wrong (search_context, id_field or search_scope). > Similarly what is the difference LDAPAuthentication and > LDAPHierarchicalAuthemtication ? LDAPAuthentication is for when all your users are in a single branch, so you don't need to search the username given in login form in LDAP to retrieve full DN. LDAPHierarchicalAuthentication is for when you have users in different branches and you can't construct their full DN from the information given in the login form, so you have to search for full DN before you attempt to bind. Furthermore, in LDAPHierarchicalAuthentication you first do a bind as an administrative user with read access to the tree, so you can search and only later a bind as the actual user is attempted (so there are 2 binds). Regards, ~~helix84 ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ DSpace-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-tech
