search for: inetorgperson

Hello list, have a samba 3.4.3 as domain controller with openldap as backend, using ldapsam:trusted = Yes and ldapsam:editposix = Yes and everything works like a charm. Now i would like to use this ldap for storing more information about my users; full name, phone, address and maybe even a picture. InetOrgPerson is the objectClass i would like to use since it's standard and has all i need and more. Samba use the account objectClass as structural class for user and computer accounts, and since inetOrgPerson and account are both structural openldap won't let me have both in the same entry. I've b...

...c=united-securities,dc=com createTimestamp: 20050309195402Z entryCSN: 20050309195402Z#000004#00#000000 modifiersName: cn=Manager,dc=united-securities,dc=com modifyTimestamp: 20050309195402Z dn: uid=Administrator,ou=People,dc=united-securities,dc=com cn: Administrator sn: Administrator objectClass: inetOrgPerson objectClass: sambaSamAccount objectClass: posixAccount gidNumber: 512 uid: Administrator uidNumber: 998 homeDirectory: /home/ sambaPwdLastSet: 0 sambaLogonTime: 0 sambaLogoffTime: 2147483647 sambaKickoffTime: 2147483647 sambaPwdCanChange: 0 sambaPwdMustChange: 2147483647 sambaHomePath: \\GIMLI\home...

...domain2.com: dc=domain2.com,ou=Domains,dc=test,dc=local Definition of mailuser1 on domail2.com: dn: uid=mailuser1,dc=domain2.com,ou=Domains,dc=test,dc=local uid: mailuser1 cn: User mailuser1 sn: User 1 displayName: User mailuser1 objectClass: inetOrgPerson objectClass: organizationalPerson objectClass: person objectClass: top mail: mailuser1 at domain2.com ************************************* domain1.com: dc=domain1.com,ou=Domains,dc=test,dc=local Definition of mailuser1 on domain1.com: dn: uid=ma...

I am looking at my computer accounts that were created using smbldap-useradd.pl -w workstationname. And I see the following objectClasses: top inetOrgPerson posixAccount sambaSamAccount I understand I need one structural objectClass, but don't understand why inetOrgPerson is being used. Couldn't I use sambaSidEntry instead? sambaSidEntry is structural, and only requires sambaSID. Any insight is welcome. Spencer

I don't know if I should post this here or in the samba bugzilla but here goes... I am trying to get samba-ldap (editposix) to use the Inetorgperson schema so that I can setup a samba domain using our existing ldap directory. Our websites users are held in a LDAP directory that has user info stored in the Intetorgperson schema where user names are in cn=Username but smba-ldap users are stored in the 'account' schema as uid=Username...

Hi guys, I had a look in the sources about this problem. the problem seems to be the ldap_escape function that is called from ldap_verify_plain_auth_bind_userdn(..) I dont really know if this escaping is needed at this point, but with this change it works for me. No other problems discovered so far. could somebody, who is deeper in the sources give me a hint if this will make some troubles?

...his: dn: uid=firstname,ou=People,dc=domain,dc=com uid: firstname uidNumber: 4025 gidNumber: 4025 givenName: firstname objectClass: top objectClass: person objectClass: posixAccount objectClass: shadowAccount objectClass: organizationalPerson objectClass: inetOrgPerson loginShell: /bin/bash homeDirectory: /home/firstname cn: firstname lastname mail: firstname.lastname at domain.com<mailto:firstname.lastname at domain.com> This is how I connect Dovecot with LDAP hosts = ldapserver ldap_version = 3 base = ou=People,dc=domain,dc=c...

...2 14:15:48 mail2 dovecot[28715]: auth: Error: ldap(sales,192.168.123.39,<fd5mpwVddrvAqHsn>): user not found from userdb I changed the filters thinking I needed to look at the attributes seen by one of these accounts, I used the apache studio to find out what was visible. >From that I saw inetOrgPerson could be used. So I changed the filters. ?user_filter = (&(objectClass=inetOrgPerson)(uid=%u)) ?pass_filter = (&(objectClass=inetOrgPerson)(uid=%n)) ?iterate_filter = (objectClass=inetOrgPerson) Nov 02 14:26:44 mail2 dovecot[29047]: auth: Debug: client in: AUTH??????? 1??????? PLAIN??????...

...t; uidNumber: 4025 > > gidNumber: 4025 > > givenName: firstname > > objectClass: top > > objectClass: person > > objectClass: posixAccount > > objectClass: shadowAccount > > objectClass: organizationalPerson > > objectClass: inetOrgPerson > > loginShell: /bin/bash > > homeDirectory: /home/firstname > > cn: firstname lastname > > mail: firstname.lastname at domain.com<mailto:firstname.lastname at domain.com> > > > > This is how I connect Dovecot with LDAP > > > > ho...

...Role cn: admin description: LDAP administrator userPassword:: e2NyeXB0fVQ3cnZKWVBXMGJCVnM= dn: ou=accounts,dc=telbit,dc=pt objectClass: top objectClass: organizationalUnit ou: accounts description: Users dn: uid=mgamito,ou=accounts,dc=telbit,dc=pt objectClass: top objectClass: person objectClass: inetOrgPerson objectClass: qmailUser o: Telbit uid: mgamito homeDirectory: /var/qmail/maildirs/mgamito at telbit.pt mailAlternateAddress: mgamito at mail.telbit.pt mailAlternateAddress: mgamito at metropolis.telbit.pt mailQuotaSize: 1073741824 sn: Gamito mail: mgamito at telbit.pt userPassword:: e01ENX04WmhhakZF...

...uth: Error: ldap(sales,192.168.123.39,<fd5mpwVddrvAqHsn>): user not found from userdb >> >> I changed the filters thinking I needed to look at the attributes seen by one of these accounts, I used the apache studio to find out what was visible. >> >>> From that I saw inetOrgPerson could be used. So I changed the filters. >> >> ?user_filter = (&(objectClass=inetOrgPerson)(uid=%u)) >> ?pass_filter = (&(objectClass=inetOrgPerson)(uid=%n)) >> ?iterate_filter = (objectClass=inetOrgPerson) >> >> Nov 02 14:26:44 mail2 dovecot[29047]: auth...

Red Hat Linux release 7.2 (Enigma) OpenLDAP 2.3.38 Dovecot 1.0.12 SHORT VERSION ----- ------- Here is my dovecot-ldap.conf: hosts = ldap.lrtz dn = cn=varmail,ou=users,dc=lorentz,dc=com dnpass = ********* ldap_version = 3 auth_bind = yes pass_filter = (&(objectClass=inetOrgPerson)(mail=%Lu)) base = ou=users, dc=%Dd scope = onelevel I have tested using the above information with ldapsearch, and it works fine. However, when dovecot tries to authenticate the user, the LDAP server receives the query and responds to it (according to the LDAP log file), but dovecot just hangs...

...5 > >>> givenName: firstname > >>> objectClass: top > >>> objectClass: person > >>> objectClass: posixAccount > >>> objectClass: shadowAccount > >>> objectClass: organizationalPerson > >>> objectClass: inetOrgPerson > >>> loginShell: /bin/bash > >>> homeDirectory: /home/firstname > >>> cn: firstname lastname > >>> mail: firstname.lastname at domain.com<mailto:firstname.lastname at domain.com> > >>> > >>> This is how I connec...

...While I've successfully used the ldapsam:editposix module in conjunction with the "net sam" and "net rpc" toolchain, which provides me with both the POSIX and the Samba account info for each account stored centrally in an LDAP DIT, I would like to have the info related to an InetOrgPerson as well. What's the easiest (preferred) way of adding that schema to a number of existing LDAP accounts (there are around 25 of these accounts in my DIT)? Thanks in advance & kind regards, Holger -------------- next part -------------- A non-text attachment was scrubbed... Name: n...

I have _almost_ got Dovecot working! One little snag... My users login using their email address as username. Each domain has their own LDAP subtree. Each user has an entry in the ou=users subtree of the domain subtree, and has a mail: field (inetOrgPerson) listing their email address/login name. I am trying to use auth_bind: when I login with jackmc at lorentz.com, dovecot should search for mail=jackmc at lorentz.com in the onelevel below ou=users,dc=lorentz,dc=com and find me as "cn=Jack McKinney,ou=users,dc=lorentz,dc=com". I have crea...

...ovecot[28715]: auth: Error: ldap(sales,192.168.123.39,<fd5mpwVddrvAqHsn>): user not found from userdb > > I changed the filters thinking I needed to look at the attributes seen by one of these accounts, I used the apache studio to find out what was visible. > > >From that I saw inetOrgPerson could be used. So I changed the filters. > > ?user_filter = (&(objectClass=inetOrgPerson)(uid=%u)) > ?pass_filter = (&(objectClass=inetOrgPerson)(uid=%n)) > ?iterate_filter = (objectClass=inetOrgPerson) > > Nov 02 14:26:44 mail2 dovecot[29047]: auth: Debug: client in: AUTH...

...option for our ~500 maschines...) I have looked at the computer account of one maschine after the migration and after I rejoined the domain manually. There's a difference: after "net rpc vampire" migration: dn: uid=BIT59$,ou=computers,dc=uni-wh,dc=de objectClass: top objectClass: inetOrgPerson objectClass: posixAccount objectClass: sambaSamAccount cn: BIT59$ sn: BIT59$ uid: BIT59$ uidNumber: 22693 gidNumber: 515 homeDirectory: /dev/null loginShell: /bin/false description: Computer gecos: Computer structuralObjectClass: inetOrgPerson entryUUID: 4de87562-e740-1029-802b-d5f8fbe677cd creator...

...rganizationalUnit ou: projectos dn: ou=projectos,ou=accounts,dc=telbit,dc=pt objectClass: top objectClass: organizationalUnit ou: projectos description: Contas de email de projectos dn: uid=operacao.centaur,ou=projectos,ou=accounts,dc=telbit,dc=pt objectClass: top objectClass: person objectClass: inetOrgPerson objectClass: qmailUser sn:: T3BlcmHDp8OjbyBDZW50YXVy cn:: T3BlcmHDp8OjbyBDZW50YXVy mail: operacao.centaur at telbit.pt uid: operacao.centaur mailAlternateAddress: operacao.centaur at mail.telbit.pt mailAlternateAddress: operacao.centaur at metropolis.telbit.pt userPassword: {MD5}aOdpPfsu9maWY9xQnXm...

This is the user DN: > cn=Klara Fall,ou=People,dc=[domainname],dc=de According to your Dovecot configuration > auth_bind_userdn = cn=%u,ou=People,dc=**[domainname]**,dc=de if you login with "klarafall" it will be expanded into cn=klarafall,ou=People,dc=[domainname],dc=de which is not the correct DN for Mrs Klara. So if you login with "Klara Fall" it should work,

...ribute deliveryMode = nolocal? This is my /etc/dovecot/conf.d/dovecot-ldap.conf.ext hosts = xxx.xxx.xxx.xxx auth_bind = yes dn = cn=admin,dc=nth,dc=ch dnpass = xxxxxxxxxx ldap_version = 3 base = dc=nth,dc=ch #deref = always scope = subtree user_attrs = mail=user user_filter = (|(&(objectclass=inetOrgPerson)(mail=%u))(|(mailAlternateAddress=%u))) pass_attrs = uid=user pass_filter = (&(objectclass=inetOrgPerson)(|(mail=%u)(mailAlternateAddress=%u))) default_pass_scheme = CRYPT Basicaly, I want to make check: if deliveryMode=nolocal > do not deliver to mail=some.mail at tld.com (only to mailFo...