Am Fri, 30 Jan 2015 18:36:29 +0100 schrieb Dennis <[email protected]>:
> Hi everyone, > > I'm new to the ldap stuff, therefore sorry if this is a silly > question. My openldap (slapd) version is 2.4.28. To manage openldap > I'm using phpldapadmin. I'm using a third party software which relies > on ldap to manage users. > > I've added a test user to ldap via phpldapadmin. The 3rd party > software tries to modify/add an object via the following bind: > > slapd[19030]: conn=1435 fd=18 ACCEPT from IP=X.X.X.X:35541 > (IP=0.0.0.0:389) slapd[19030]: conn=1435 op=0 BIND > dn="cn=admin,dc=dmp,dc=..." method=128 slapd[19030]: conn=1435 op=0 > BIND dn="cn=admin,dc=dmp,dc=..." mech=SIMPLE ssf=0 > slapd[19030]: conn=1435 op=0 RESULT tag=97 err=0 text= > slapd[19030]: conn=1435 op=1 MOD > dn="uid=test1003,ou=users,dc=dmp,dc=..." slapd[19030]: conn=1435 op=1 > MOD attr=objectclass slapd[19030]: conn=1435 op=1 RESULT tag=103 > err=32 text= slapd[19030]: conn=1435 fd=18 closed (connection lost) > > This fails because it tries to accomplish this by using dn="uid=...", > but as shown in phpldapadmin the dn is cn=Test > Testuser,ou=users,dc=dmp,dc=... > Therefore the distinguished name for > dn="uid=...,ou=users,dc=dmp,dc=..." doesn't exist (the user has a uid > of course). Therefore my question is, is there a possibility to > change / to configure openldap to use / allow the uid instead of the > cn? Or did I something wrong? So far I couldn't find any information > about this. Any help is welcome and I would really appreciate this :) You are free in designing a directory information tree, so a DN uid=someID,ou=users,.. is valid, you may read http://www.openldap.org/doc/admin24/ -Dieter -- Dieter Klünter | Systemberatung http://sys4.de GPG Key ID: E9ED159B 53°37'09,95"N 10°08'02,42"E
