'Re: overlay chain'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openldap-software
Subject:    Re: overlay chain
From:       manu () netbsd ! org (Emmanuel Dreyfus)
Date:       2008-07-31 17:40:56
Message-ID: 1ikyjk2.va4vns1huir0sM%manu () netbsd ! org
[Download RAW message or body]

Emmanuel Dreyfus <manu@netbsd.org> wrote:

> I fail to understand why they stopped working after 2.4
> upgrade.

I made some progress: 

- The replica's chain overlay perform the bind to the master using its
certificate, that works.

- The authz-regex on the master correctly maps the certificate CN to an
LDAP DN.

- But the authzTo attribute for that DN seems ignored. I have this
message:
Jul 31 05:46:31 botin slapd[27603]: SASL Authorize [conn=5]: proxy
authorization allowed authzDN=""  

Any hint on how to debug that?

-- 
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu@netbsd.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic