Cant make ldapsearch
Dan White
dwhite at olp.net
Mon Nov 7 11:15:09 EST 2016
On 11/06/16 20:05 +0300, mark gavrilman via Cyrus-sasl wrote:
>[root at example openldap]# ldapsearch -LLL -U matt at example.com -v '(uid=matt at example.com)' uid -d -1
>res_errno: 80, res_error: <SASL(-1): generic failure: unable to canonify user and get auxprops>, res_matched: <>
>additional info: SASL(-1): generic failure: unable to canonify user and get auxprops
>[root at localhost openldap]# sasldblistusers2
>matt at example.com: userPassword
>[root at localhost openldap]# pluginviewer -a
>Installed and properly configured auxprop mechanisms are:
><none>
>[root at localhost openldap]# db_dump -p /etc/sasldb2
>VERSION=3
>format=print
>type=hash
>db_pagesize=4096
>HEADER=END
>matt\00example.com\00userPassword
>secret
>DATA=END
>#5
>vi /etc/sasl2/slapd.conf
>mech_list: DIGEST-MD5
>pwcheck_method:saslauthd
>sasldb_path: /etc/sasldb2
>auxprop_plugin: sasldb
You'll also need to configure olcSaslAuxprops/sasl-auxprops within your
slapd configuration, as OpenLDAP ignores auxprop_plugin in your (sasl)
slapd.conf above. See manpages slapd-conf/slapd.conf.
--
Dan White
More information about the Cyrus-sasl
mailing list