Hi, > Does this only happen with the tow users croessners and eroessners? Does this > happen with users with more different account names, like croessners and > lskywalker?
I did not explicitly test a third different user yet, but the results from LDAP
already showed the main problem. If you open for example miCal on an iPad, you
can directly see the problem. Normally SOGo should use the proxy user to get
the DN of the user to authenticate, but it directly uses a wrong DN, which it
has stored somewhere else. Maybe memcache.
I do not know the internals of SOGo, how it queries DNs and where and how it
stores them, but there is something wrong.
> Did you compare the LDAP-Data of the two users croessners and eroessners?
> Export it into a LDIF-File per user and diff them.
> Are there similarities in the sogo-data? Export the userprers and -data per
> user and diff them
>
The user objects are absolutely different. The objects have been extended to be
used with SOGo and it really returns only a single object, if one of
"bindFields" is used. LDAP logs always show nentries=1
As I disabled "bindAsCurrentUser", everything is working perfectly, which also
shows that the data is not the source of the problem. This is an important fact
;)
I will open a ticket on this issue soon.
Thanks
Christian
>>
>> sogod SOGoUserSources '(
>> {
>> CNFieldName = cn;
>> IMAPLoginFieldName = mail;
>> KindFieldName = Kind;
>> MailFieldNames = (
>> mail
>> );
>> MultipleBookingsFieldName = Multiplebookings;
>> UIDFieldName = uniqueIdentifier;
>> baseDN = "ou=it,dc=roessner-net,dc=de";
>> bindAsCurrentUser = NO;
>> bindDN = "cn=proxyuser,dc=roessner-net,dc=de";
>> bindFields = (
>> mail,
>> cn,
>> uniqueIdentifier
>> );
>> bindPassword = *****;
>> canAuthenticate = YES;
>> displayName = "Gemeinsame Adressen";
>> encryption = STARTTLS;
>> hostname = "ldap0.roessner-net.de db.roessner-net.de";
>> id = LDAP;
>> isAddressBook = YES;
>> port = 389;
>> scope = SUB;
>> type = ldap;
>> }
>> )'
>>
>>
smime.p7s
Description: S/MIME cryptographic signature
