[prev in list] [next in list] [prev in thread] [next in thread]
List: openldap-software
Subject: Re: overlay chain
From: manu () netbsd ! org (Emmanuel Dreyfus)
Date: 2008-07-31 17:40:56
Message-ID: 1ikyjk2.va4vns1huir0sM%manu () netbsd ! org
[Download RAW message or body]
Emmanuel Dreyfus <manu@netbsd.org> wrote:
> I fail to understand why they stopped working after 2.4
> upgrade.
I made some progress:
- The replica's chain overlay perform the bind to the master using its
certificate, that works.
- The authz-regex on the master correctly maps the certificate CN to an
LDAP DN.
- But the authzTo attribute for that DN seems ignored. I have this
message:
Jul 31 05:46:31 botin slapd[27603]: SASL Authorize [conn=5]: proxy
authorization allowed authzDN=""
Any hint on how to debug that?
--
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu@netbsd.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic