[turba] user's account bind problem
Joselito Fenix
jojo_mti at yahoo.com
Fri Oct 7 00:52:53 PDT 2005
it works when i have the -x parameter in ldapsearch
command...
--- Silver Salonen <silver at ultrasoft.ee> wrote:
> Hm. Maybe you should use option -x?
>
> >From "man ldapsearch":
> -x Use simple authentication instead of
> SASL.
>
> Silver
>
> > nope, it gives me an of
> "ldap_sasl_interactive_bind_s:
> > Local error" when i used your ldapsearch
> command...any
> > suggestion?
> >
> > jOjO
> >
> > --- Silver Salonen <silver at ultrasoft.ee> wrote:
> >
> > > Hi.
> > >
> > > Yes, it's possible to use simple authentication.
> In
> > > fact, that's what I'm
> > > using. In fact, I don't know much anything about
> > > authenticating through SASL
> > > in LDAP :)
> > >
> > > But that command-line example I wrote before..
> did
> > > you try it and did it work
> > > successfully for you? That uses simple
> > > authentication as well..
> > >
> > > Silver
> > >
> > > > mr. silver, i forgot to say is it possible to
> bind
> > > a
> > > > simple authentication in imp/turba/ldap? coz
> im
> > > using
> > > > simple authentication instead of sasl method
> > > although
> > > > i have several cyrus-sasl packages installed
> > > including
> > > > cyrus-sasl-gssapi and cyrus-sasl-plain
> > > >
> > > > tnx,
> > > > jOjO
> > > >
> > > > --- Joselito Fenix <jojo_mti at yahoo.com> wrote:
> > > >
> > > > > sources.php contained ldap and mysql (for
> backup
> > > > > purposes only). below is the content of my
> > > > > sources.php
> > > > >
> > > > > ************ MYSQL ******************
> > > > > $cfgSources['localsql'] = array(
> > > > > 'title' => _("Backup Addressbook"),
> > > > > 'type' => 'sql',
> > > > > 'params' => array(
> > > > > 'phptype' => 'mysql',
> > > > > 'hostspec' => 'localhost',
> > > > > 'username' => 'root',
> > > > > 'password' => 'password',
> > > > > 'database' => 'horde',
> > > > > 'table' => 'turba_objects',
> > > > > 'charset' => 'iso-8859-1'
> > > > > ......
> > > > > ......
> > > > > ************************************
> > > > >
> > > > > ************** LDAP ****************
> > > > > ......
> > > > > ......
> > > > > $uid = Auth::getBareAuth();
> > > > > $basedn = 'o=mycompany';
> > > > > $cfgSources['personal_ldap'] = array(
> > > > > 'title' => _("My Addressbook"),
> > > > > 'type' => 'ldap',
> > > > > 'params' => array(
> > > > > 'server' => 'localhost',
> > > > > 'tls' => false,
> > > > > 'root' => 'cn='. $uid . ',ou=group,' .
> $basedn,
> > > > > 'bind_dn' => 'cn='. $uid . ',ou=group,' .
> > > $basedn,
> > > > > 'bind_password' =>
> > > Auth::getCredential('password'),
> > > > > 'dn' => array('cn', 'uid'),
> > > > > ......
> > > > > ......
> > > > > 'scope' => 'one',
> > > > > 'charset' => 'utf-8',
> > > > > 'encoding' => 'utf8',
> > > > > 'version' => 3
> > > > > }
> > > > > ......
> > > > > ......
> > > > > *******************************************
> > > > >
> > > > > tnx....
> > > > > jOjO :-)
> > > > >
> > > > >
> > > > > --- Silver Salonen <silver at ultrasoft.ee>
> wrote:
> > > > >
> > > > > > Hi.
> > > > > >
> > > > > > It seems you've got enough rights in
> OpenLDAP.
> > > > > Maybe
> > > > > > even too much of them.
> > > > > > There's plenty of examples in internet how
> to
> > > set
> > > > > up
> > > > > > access rights for
> > > > > > addressbook in OpenLDAP.
> > > > > >
> > > > > > Just in case you could try some query from
> > > > > > command-line:
> > > > > > ldapsearch -s sub -W -b
> "ou=group,o=mycompany"
> > > -D
> > > > > > "cn=user1,ou=group,o=mycompany"
> > > > > >
> > > > > > But still, what do you have in
> sources.php?
> > > Did
> > > > > you
> > > > > > remove all the unnecessary
> > > > > > sources and left only one?
> > > > > >
> > > > > > Silver
> > > > > >
> > > > > > > tnx for the reply Mr. Silver, but it's
> the
> > > same
> > > > > > config
> > > > > > > i used before in sources.php...when i
> choose
> > > the
> > > > > > > personal_addressbook and click the
> search
> > > button
> > > > > > in
> > > > > > > turba window no ldap entries were
> displayed
> > > > > > instead of
> > > > > > > ldap entries should display in the list
> of
> > > ldap
> > > > > > > addressbook (w/ write access only on
> his/her
> > > > > > account).
> > > > > > >
> > > > > > > pls take a look (if you have time only
> :-) )
> > > on
> > > > > my
> > > > > > > slapd.conf...coz im newbie on both php
> and
> > > > > > openldap
> > > > > > > service :(
> > > > > > >
> > > > > > > database ldbm
> > > > > > > suffix "o=mycompany"
> > > > > > > rootdn "ou=group,o=mycompany"
> > > > > > > rootpw password
> > > > > > > directory /var/lib/ldap/example
> > > > > > > access to *
> > > > > > > by * write
> > > > > > > by * none
> > > > > > >
> > > > > > > #access to dn="ou=group,o=mycompany"
> > > > > > > # by dn="cn=$1, o=roadrunner"
> write
> > > > > > > # by * none
> > > > > > >
> > > > > > > schemacheck on
> > > > > > > lastmod on
> > > > > > > index cn,sn,st
> > > > > > eq,pres,sub
> > > > > > >
> > > > > > > tnx again.
> > > > > > > jOjO
> > > > > > >
> > > > > > > --- Silver Salonen <silver at ultrasoft.ee>
> > > wrote:
> > > > > > >
> > > > > > > > Hi.
> > > > > > > >
> > > > > > > > I just set Turba to get addressbook
> from
> > > LDAP
> > > > > > and it
> > > > > > > > works perfectly :)
> > > > > > > >
>
=== message truncated ===
__________________________________
Yahoo! Mail - PC Magazine Editors' Choice 2005
http://mail.yahoo.com
More information about the turba
mailing list