Hi again<br><br>all informations you provided looks ok. At times like this when error was hard to find I looked /var/log/dirsrv/slapd-instance_name/access log for debug info. Run tail -f on access log and try to use id command again. The logs will provide some tracing info commbined with information you provided already.<br>
<br>Greg.<br><br><div class="gmail_quote">2012/7/28 Fosiul Alam <span dir="ltr"><<a href="mailto:fosiul@gmail.com" target="_blank">fosiul@gmail.com</a>></span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
HI thanks<br>
<br>
if i try this<br>
<br>
ldapsearch -x -ZZ -D "uid=falam,ou=users,l=uk,dc=fosiul,dc=lan" -w<br>
xxx -h ldap-2.fosiul.lan -b "dc=fosiul,dc=lan" "(cn=Fosiul Alam)" dn<br>
cn sn<br>
<br>
now if i give a wrong password it will say , authentication failed<br>
<br>
but with correct password..<br>
It does not return anything ..<br>
and i get this in the log<br>
<br>
<a href="http://fpaste.org/SA47/" target="_blank">http://fpaste.org/SA47/</a><br>
<div class="HOEnZb"><div class="h5"><br>
On Sat, Jul 28, 2012 at 8:31 PM, yersinia <<a href="mailto:yersinia.spiros@gmail.com">yersinia.spiros@gmail.com</a>> wrote:<br>
> Sorry for the top posting.<br>
><br>
> But your test is not sufficient. can you do a ldap simple bind with<br>
> the user , not with the directory admin, you want to authenticate ?<br>
> This is the first question to answer . so you can be sure no ldap acl<br>
> problem, no password mismatch and the like.<br>
><br>
> Regards<br>
><br>
> 2012/7/28, Fosiul Alam <<a href="mailto:fosiul@gmail.com">fosiul@gmail.com</a>>:<br>
>> Hi<br>
>> I have setup ldap server and from client its returning example :<br>
>><br>
>> [root@home ~]# ldapsearch -x -ZZ -D "cn=Directory manager" -w xxx -h<br>
>> ldap-2.fosiul.lan -b "dc=fosiul,dc=lan" "(cn=Fosiul Alam)"<br>
>> # extended LDIF<br>
>> #<br>
>> # LDAPv3<br>
>> # base <dc=fosiul,dc=lan> with scope subtree<br>
>> # filter: (cn=Fosiul Alam)<br>
>> # requesting: ALL<br>
>> #<br>
>><br>
>> # falam, users, uk, fosiul.lan<br>
>> dn: uid=falam,ou=users,l=uk,dc=fosiul,dc=lan<br>
>> givenName: Fosiul<br>
>> sn: Alam<br>
>> loginShell: /bin/bash/bash<br>
>> uidNumber: 1000<br>
>> gidNumber: 3000<br>
>> objectClass: top<br>
>> objectClass: person<br>
>> objectClass: organizationalPerson<br>
>> objectClass: inetorgperson<br>
>> objectClass: posixAccount<br>
>> uid: falam<br>
>> cn: Fosiul Alam<br>
>> homeDirectory: /home/falam<br>
>> userPassword:: e1NTSEF9UGtqNjhvSU1pSR0RrSWNYYkVvYVU2V2c9PQ=<br>
>> =<br>
>><br>
>> # search result<br>
>> search: 3<br>
>> result: 0 Success<br>
>><br>
>> # numResponses: 2<br>
>> # numEntries: 1<br>
>><br>
>> and in the access log :<br>
>><br>
>> 28/Jul/2012:15:42:57 +0100] conn=229 fd=70 slot=70 connection from<br>
>> 192.0.0.4 to 192.0.0.9<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=0 EXT<br>
>> oid="1.3.6.1.4.1.1466.20037" name="startTLS"<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=0 RESULT err=0 tag=120<br>
>> nentries=0 etime=0<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 SSL 256-bit AES<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=1 BIND dn="cn=Directory<br>
>> manager" method=128 version=3<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=1 RESULT err=0 tag=97<br>
>> nentries=0 etime=0 dn="cn=directory manager"<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=2 SRCH<br>
>> base="dc=fosiul,dc=lan" scope=2 filter="(cn=Fosiul Alam)" attrs=ALL<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=2 RESULT err=0 tag=101<br>
>> nentries=1 etime=0<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=3 UNBIND<br>
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=3 fd=70 closed - U1<br>
>><br>
>><br>
>> But From command line , when i do<br>
>> [root@home ~]# id falam<br>
>> id: falam: No such user<br>
>><br>
>><br>
>><br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 fd=70 slot=70 connection from<br>
>> 192.0.0.4 to 192.0.0.9<br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=0 EXT<br>
>> oid="1.3.6.1.4.1.1466.20037" name="startTLS"<br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=0 RESULT err=0 tag=120<br>
>> nentries=0 etime=0<br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 SSL 256-bit AES<br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=1 BIND dn="" method=128 version=3<br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=1 RESULT err=0 tag=97<br>
>> nentries=0 etime=0 dn=""<br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=2 SRCH<br>
>> base="dc=fosiul,dc=lan" scope=2<br>
>> filter="(&(objectClass=posixAccount)(uid=falam))" attrs="uid<br>
>> userPassword uidNumber gidNumber cn homeDirectory loginShell gecos<br>
>> description objectClass"<br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=2 RESULT err=0 tag=101<br>
>> nentries=0 etime=0<br>
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=-1 fd=70 closed - B1<br>
>><br>
>><br>
>> So basically, ldapsearch is working but authentication is not working ..<br>
>><br>
>> Can any one please help me with this .<br>
>> and i am using Centos 5.8<br>
>><br>
>> Fosiul.<br>
>> --<br>
>> 389 users mailing list<br>
>> <a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
>> <a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
><br>
> --<br>
> Inviato dal mio dispositivo mobile<br>
> --<br>
> 389 users mailing list<br>
> <a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
> <a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
<br>
<br>
<br>
</div></div><div class="im HOEnZb">--<br>
Regards<br>
Fosiul Alam<br>
07877100621<br>
<a href="http://www.fosiul.co.uk" target="_blank">http://www.fosiul.co.uk</a><br>
</div><div class="HOEnZb"><div class="h5">--<br>
389 users mailing list<br>
<a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a></div></div></blockquote></div><br>