[OGo-Users] connection with LDAP
Guillaume Estrade
users@opengroupware.org
Wed, 22 Aug 2007 17:06:27 +0200
Adam Tauno Williams wrote:
>> I installed opengroupware-1.1 on Gentoo and i can't find documentation
>> on internet for connecting with LDAP.
>> My config in /usr/local/share/libFoundation/Defaults/NSGlobalDomain.plist :
>
> Always access defaults via the Defaults command, not manually. In this
> case "Defaults read"
>
I used the "Defaults" command but logged in as root. OGo is run by ogo
user. Now this part is ok. The correct file is updated and read.
>> {
>> Languages = (English);
>> TimeZoneName = GMT;
>> LSAuthLDAPServer = "<my.server.com>";
>> LSAuthLDAPServerRoot = "ou=user,ou=account,o=ldap";
>> LDAPInitialBindDN = "uid=nss,ou=admin,ou=account,o=ldap";
>> LDAPInitialBindPW = password;
>> LDAPLoginAttributeName = uid;
>> }
>> Can anybody confirm that this is the right config?
>
> Other than is "ou=user,ou=account,o=ldap" your real server root? That
> naming convention doesn't correspond to X.500 or RFC2247.
>
>> Actually it is not working. Sniffing the trafic with ethereal shows that
>> there is no connection to the ldap server. Can anybody help me there?
>
> Is "<my.server.com>" literal? If so the "<>" are wrong. By no
> connection do you mean no LDAP packets or no successful connection? If
> your DSA only supports protocol level 3 then you need to set
> LDAPInitialBindSpecific (as described in the Authentication chapter of
> WMOGAG -
> http://docs.opengroupware.org/Members/whitemice/wmogag/file_view ) Also
> would be useful to set the LDAPDebugEnabled default. Both
> LDAPDebugEnabled and LDAPInitialBindSpecific are boolean values; set
> then to YES or NO.
Now I have another problem :
The LDAP connection works fine when using port 389 but not on port 636
using ldap/ssl
This is the only parameter that I changed:
LSAuthLDAPServerPort = 636;
Did I miss someting?