Hello,
Maybe a simple question. I have my database setup similar to this:
dn: cn=john doe,ou=cmc,dc=cmcflex,dc=com
ou: cmc
cn: john doe
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
givenName: John
sn: Doe
mail: [EMAIL PROTECTED]
userPassword: xxxxxxx
What I would like to be able to do is bind with attribute mail
instead of dn. I thought maybe an alias would do:
dn: [EMAIL PROTECTED],ou=cmc,dc=cmcflex,dc=com
objectClass: alias
objectClass: extensibleObject
cn: [EMAIL PROTECTED]
aliasObjectname: cn=john doe,ou=cmc,dc=cmcflex,dc=com
I thought I could use:
ldapsearch -x -D "[EMAIL PROTECTED],ou=cmc,dc=cmcflex,dc=com" -
w xxxxxx
but I get an invalid credentials (49) error - which I suppose makes
sense because there's no user password associated with that CN? But
I was hoping that the alias would redirect it to the aliasObjectname
attribute. As you can see I'm pretty lost and any help would be
greatly appreciated.
Thanks,
Matt
