On 10/26/2010 9:14 AM, Frederic Hornain wrote:

Rich,

ldapsearch -v -h 192.168.122.142 -s sub -U uid:fhornain,ou=People,dc=example,dc=com -b "dc=example,dc=com" -Y DIGEST-MD5
ldap_initialize( ldap://192.168.122.142 )
SASL/DIGEST-MD5 authentication started
Please enter your password:
ldap_sasl_interactive_bind_s: Invalid credentials (49)
additional info: SASL(-14): authorization failure: unable canonify user and get auxprops

"uid:fhornain,ou=People,dc=example,dc=com"

If you use the "uid:" syntax, it should be followed by a uid, not a dn. Or you can use the "dn:" syntax if you want to use a dn.

You may have other things going on here, but the way you've specified the user definitely isn't going to work.