If works for me too. (tested against servers running OpenLdap over Debian Squeeze and Debian Lenny) Regards.
2011/5/17 Joseph.Piron <[email protected]>: > Yes it works (MS2003 AD server). > > On May 17, 3:54 pm, Massimo Di Pierro <[email protected]> > wrote: >> It is possible that some system are more picky than others >> does it work if you replace (in line 10) >> >> '(objectClass=*)' >> >> with >> >> 'objectClass=*' >> >> If it does, it should be changed. >> >> On May 17, 6:51 am, José Luis Redrejo <[email protected]> wrote: >> >> >> >> >> >> >> >> > 2011/5/17 Joseph.Piron <[email protected]>: >> >> > > Hi all, >> >> > > I think there's a little bug in ldap_auth.py, indeed for the parameter >> > > filterstr of ldap_auth(..) (line 10), the default value is set to >> > > (objectClass=*) and during the call of search_ext_s (line 97), the >> > > filter argument is constructed with >> > > "(&(sAMAccountName=%s)(%s))" % (username_bare, filterstr) >> >> > > which will introduce double parenthesis around objectClass=* . >> > > I suggest to remove them from the default parameter value. >> >> > Sorry, but I don't see the bug, and it's working perfectly in my >> > systems.... >> >> > > Regards all!
