How did you configure the geonetwork ldap access (Administration/System
My values are:
name: cn (I think here was uid before)
profile: ... (keep open)
That's the reason why I changed the code from 'uid' to 'cn' as I wrote in my
What you fill in here must exact match the parameters you enter in a
successful ldapsearch command.
Terry Rankine wrote:
> if I type my uid into the username box - it uses it as the BindDN to test
> my username/password.
> My LDAP entry
> dn=cn=Terry Rankine, ou=Users, dc=arrc, dc=csiro, dc=au
> there is no DN which matches uid=mrt,ou=Users,dc=arrc,dc=csiro,dc=au or
> cn=mrt,ou=Users,dc=arrc,dc=csiro,dc=au which means if i type my uid in it
> will always fail.
> how can geonetwork find my ldap user if it cant bind as my uid, to my DN
> when it doesnt know how to build my dn?
> GN config bits:
> Distinguished names:
> Base: dc=arrc,dc=csiro,dc=au
> Users: ou=users
> User's attributes:
> Name: cn
> Profile: mail
> gn log:
> 42903803 [TP-Processor2] WARN geonetwork.ldap - Cannot open context on :
> 42903804 [TP-Processor2] WARN geonetwork.ldap - (C) Reason : [LDAP:
> error code 49 - Invalid Credentials]
> ldap log:
> Aug 25 10:58:44 cgsrv4 slapd: conn=0 op=0 BIND
> dn="cn=mrt,ou=users,dc=arrc,dc=csiro,dc=au" method=128
> I am pretty sure Geonetwork needs to work out that it has to do two steps
> search the tree for my uid, bind as my dn with my username and password
> hramthun wrote:
>> No I still login with my username not with the cn. The cn (in the
>> Geonetwork class) is only to authorize against the ldap system. I tried
>> 'ldapsearch' or 'ldapbind' (on oracle ldap) to see which commands
>> produce which output.
View this message in context: http://n2.nabble.com/LDAP-config-tp3421426p3508110.html
Sent from the GeoNetwork users mailing list archive at Nabble.com.