[turba] user's account bind problem
Silver Salonen
silver at ultrasoft.ee
Fri Oct 7 00:07:19 PDT 2005
Hm. Maybe you should use option -x?
From "man ldapsearch":
-x Use simple authentication instead of SASL.
Silver
> nope, it gives me an of "ldap_sasl_interactive_bind_s:
> Local error" when i used your ldapsearch command...any
> suggestion?
>
> jOjO
>
> --- Silver Salonen <silver at ultrasoft.ee> wrote:
>
> > Hi.
> >
> > Yes, it's possible to use simple authentication. In
> > fact, that's what I'm
> > using. In fact, I don't know much anything about
> > authenticating through SASL
> > in LDAP :)
> >
> > But that command-line example I wrote before.. did
> > you try it and did it work
> > successfully for you? That uses simple
> > authentication as well..
> >
> > Silver
> >
> > > mr. silver, i forgot to say is it possible to bind
> > a
> > > simple authentication in imp/turba/ldap? coz im
> > using
> > > simple authentication instead of sasl method
> > although
> > > i have several cyrus-sasl packages installed
> > including
> > > cyrus-sasl-gssapi and cyrus-sasl-plain
> > >
> > > tnx,
> > > jOjO
> > >
> > > --- Joselito Fenix <jojo_mti at yahoo.com> wrote:
> > >
> > > > sources.php contained ldap and mysql (for backup
> > > > purposes only). below is the content of my
> > > > sources.php
> > > >
> > > > ************ MYSQL ******************
> > > > $cfgSources['localsql'] = array(
> > > > 'title' => _("Backup Addressbook"),
> > > > 'type' => 'sql',
> > > > 'params' => array(
> > > > 'phptype' => 'mysql',
> > > > 'hostspec' => 'localhost',
> > > > 'username' => 'root',
> > > > 'password' => 'password',
> > > > 'database' => 'horde',
> > > > 'table' => 'turba_objects',
> > > > 'charset' => 'iso-8859-1'
> > > > ......
> > > > ......
> > > > ************************************
> > > >
> > > > ************** LDAP ****************
> > > > ......
> > > > ......
> > > > $uid = Auth::getBareAuth();
> > > > $basedn = 'o=mycompany';
> > > > $cfgSources['personal_ldap'] = array(
> > > > 'title' => _("My Addressbook"),
> > > > 'type' => 'ldap',
> > > > 'params' => array(
> > > > 'server' => 'localhost',
> > > > 'tls' => false,
> > > > 'root' => 'cn='. $uid . ',ou=group,' . $basedn,
> > > > 'bind_dn' => 'cn='. $uid . ',ou=group,' .
> > $basedn,
> > > > 'bind_password' =>
> > Auth::getCredential('password'),
> > > > 'dn' => array('cn', 'uid'),
> > > > ......
> > > > ......
> > > > 'scope' => 'one',
> > > > 'charset' => 'utf-8',
> > > > 'encoding' => 'utf8',
> > > > 'version' => 3
> > > > }
> > > > ......
> > > > ......
> > > > *******************************************
> > > >
> > > > tnx....
> > > > jOjO :-)
> > > >
> > > >
> > > > --- Silver Salonen <silver at ultrasoft.ee> wrote:
> > > >
> > > > > Hi.
> > > > >
> > > > > It seems you've got enough rights in OpenLDAP.
> > > > Maybe
> > > > > even too much of them.
> > > > > There's plenty of examples in internet how to
> > set
> > > > up
> > > > > access rights for
> > > > > addressbook in OpenLDAP.
> > > > >
> > > > > Just in case you could try some query from
> > > > > command-line:
> > > > > ldapsearch -s sub -W -b "ou=group,o=mycompany"
> > -D
> > > > > "cn=user1,ou=group,o=mycompany"
> > > > >
> > > > > But still, what do you have in sources.php?
> > Did
> > > > you
> > > > > remove all the unnecessary
> > > > > sources and left only one?
> > > > >
> > > > > Silver
> > > > >
> > > > > > tnx for the reply Mr. Silver, but it's the
> > same
> > > > > config
> > > > > > i used before in sources.php...when i choose
> > the
> > > > > > personal_addressbook and click the search
> > button
> > > > > in
> > > > > > turba window no ldap entries were displayed
> > > > > instead of
> > > > > > ldap entries should display in the list of
> > ldap
> > > > > > addressbook (w/ write access only on his/her
> > > > > account).
> > > > > >
> > > > > > pls take a look (if you have time only :-) )
> > on
> > > > my
> > > > > > slapd.conf...coz im newbie on both php and
> > > > > openldap
> > > > > > service :(
> > > > > >
> > > > > > database ldbm
> > > > > > suffix "o=mycompany"
> > > > > > rootdn "ou=group,o=mycompany"
> > > > > > rootpw password
> > > > > > directory /var/lib/ldap/example
> > > > > > access to *
> > > > > > by * write
> > > > > > by * none
> > > > > >
> > > > > > #access to dn="ou=group,o=mycompany"
> > > > > > # by dn="cn=$1, o=roadrunner" write
> > > > > > # by * none
> > > > > >
> > > > > > schemacheck on
> > > > > > lastmod on
> > > > > > index cn,sn,st
> > > > > eq,pres,sub
> > > > > >
> > > > > > tnx again.
> > > > > > jOjO
> > > > > >
> > > > > > --- Silver Salonen <silver at ultrasoft.ee>
> > wrote:
> > > > > >
> > > > > > > Hi.
> > > > > > >
> > > > > > > I just set Turba to get addressbook from
> > LDAP
> > > > > and it
> > > > > > > works perfectly :)
> > > > > > >
> > > > > > > What do you have in sources.php?
> > > > > > >
> > > > > > > I found source
> > $cfgSources['personal_ldap'] to
> > > > > be
> > > > > > > quite good. In this source
> > > > > > > Horde is binding with user's username and
> > > > > password.
> > > > > > > I guess you're using the
> > > > > > > same?
> > > > > > >
> > > > > > > Do you have something like:
> > > > > > > $uid = Auth::getBareAuth();
> > > > > > > $basedn = 'o=mycompany';
> > > > > > > ...
> > > > > > > 'root' => 'cn=' . $uid . ',ou=group,' .
> > > > $basedn,
> > > > > > > 'bind_dn' => 'cn=' . $uid . ',ou=group,' .
> > > > > $basedn,
> > > > > > > 'bind_password' =>
> > > > > Auth::getCredential('password'),
> > > > > > > ...
> > > > > > >
> > > > > > > Silver
> > > > > > >
> > > > > > > > hi,
> > > > > > > >
> > > > > > > > i have
> > > > > > > >
> > > > > > > > whitebox linux ver.3
> > > > > > > > apache 2.0.54
> > > > > > > > php 5.0.4
> > > > > > > > openldap-2.0.27-11
> > > > > > > > imap-2002d-2
> > > > > > > > mysql-3.23.58-1
> > > > > > > > horde 3.0.5
> > > > > > > > imp 4.0.3
> > > > > > > > turba 2.0.3
> > > > > > > > and content of my ldif(ldap entries) is
> >
> === message truncated ===
More information about the turba
mailing list