On Thursday 30 November 2006 05:19, [EMAIL PROTECTED] wrote:
> Hello All,
>
> I am trying to retrieve all of the user attributes of an ldap user.
> When i run the following
> command, i get back all of the user attributes except the userPassword
> field
>
> ldapsearch -x -b
> 'uid=user100,cn=MyGroup,dc=ftp,dc=mylocaldomain,dc=org'
I guess you don't have the privileges to access that value.
In case you are using OpenLDAP as a server your /etc/openldap/slapd.conf
contains something like:
access to attr=userPassword
by self write
by * auth
So it is only readable from your rootdn account.
Otherwise it would be a security problem.
You have 2 solutions:
1. Query with the rootdn account
2. Change your OpenLDAP configuration to read:
access to attr=userPassword
by dn=cn=asuperduperuser,dc=example,dc=com read
by self write
by * auth
and use that user for quering the LDAP.
regards
j
--
Jonas Helgi Palsson
"Microsoft is not the answer. Microsoft is the question. NO is the answer."
