Menu
▾
▴
perl-ldap-dev
You can subscribe to this list here.
| 2000 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(200) |
Jun
(129) |
Jul
(184) |
Aug
(204) |
Sep
(106) |
Oct
(79) |
Nov
(72) |
Dec
(54) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2001 |
Jan
(83) |
Feb
(123) |
Mar
(84) |
Apr
(184) |
May
(106) |
Jun
(111) |
Jul
(104) |
Aug
(91) |
Sep
(59) |
Oct
(99) |
Nov
(100) |
Dec
(37) |
| 2002 |
Jan
(148) |
Feb
(88) |
Mar
(85) |
Apr
(151) |
May
(80) |
Jun
(110) |
Jul
(85) |
Aug
(43) |
Sep
(64) |
Oct
(89) |
Nov
(59) |
Dec
(42) |
| 2003 |
Jan
(129) |
Feb
(104) |
Mar
(162) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Eric S. <Eri...@ta...> - 2002-12-06 08:18:15
|
Hello list,
I'm quite new with Net::LDAP module and I have a question about
ldapsearch.
I have the following perl code:
$mesg = $ldap->search ( # perform a search
base => "ou=people, o=test, c=net",
filter => "uid=$uid"
);
When the $uid is in LDAP database everything is fine, if $uid is not in
LDAP, $mesg->code returns 0 (means "success"). But it couldn't find any
answer. Is that a normal answer for LDAP? I expected to have an answer
like "Not Found". Currently, I need to check $entry->get_value to see if
I have an error or not to ensure ldapsearch found or not a record.
But may be you have better solution...
Congratulations to the developers of Net::LDAP which is a good module.
regards
--
Eric Santonacci
TALC Informatique
http://www.talc.fr
|
|
From: Anwar <an...@ne...> - 2002-12-05 06:33:42
|
I recieve an IO error Resources Tmporarily Unavailable when trrying to = retrieve data from LDAP using add and search method. But it works fine in Red hat linux. Please help=20 Regards=20 Anwar |
|
From: Graham B. <gb...@po...> - 2002-12-03 21:16:40
|
----- Forwarded message from Peggy Harstvedt <tre...@ar...> -----
Date: Tue, 3 Dec 2002 14:00:40 -0600
To: <gb...@po...>
From: "Peggy Harstvedt" <tre...@ar...>
Subject: LDAP authentication
Hello
I had my authentication working (simple authentication) using Perl 5.6,
Net::LDAP, Convert::ASN1 0.16 on a Linux machine running Rehat 7.2, but in
coming back from vacation (a mere 3 days)...something in the mix has
changed. Authentication is no longer working and my Perl script has not
changed. I'm kind of at a loss as where to start researching the problem. To
make this even more interesting, we have a PHP script that authenticates!
(He does use SSL, where I don't)
Executing an ldapsearch from a command line returns error code 49 (Invalid
Credentials) and I have tried the ldappasswd command just to see if I could
get anything to work but that failed as well (Decoding Error -See Below)
Do I need to use Authen::SASL?
Any ideas greatly appreciated,
PHarstvedt
ldapsearch command and error message:
ldapsearch -x -D
'cn=pharstvedt,cn=Users,dc=littlerock,dc=state,dc=ar,dc=us' -W -b
'dc=littlerock,dc=state,dc=ar,dc=us'cn=phars*
ldap_bind: Invalid credentials
additional info: 80090308: LdapErr:
DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893
ldappasswd command and error message:
ldappasswd -x -A -S -h 10.37.1.26 -p 389 -D 'cn=pharstvedt, cn=Users,
dc=littlerock, dc=state, dc=ar,dc=us'
Old password:
Re-enter old password:
New password:
Re-enter new password:
ldap_parse_result: Decoding error
----- End forwarded message -----
|
|
From: Tim C. <tim...@to...> - 2002-12-03 21:13:41
|
I have a small perl script to test out SMTP Auth. Now this works fine on W2K/Activeperl 5.6.1 but under RH/Perl 5.8.0 I get the message "No SASL mechanism found". I have installed the Authen module (2.02) correctly, and this is all that was required under W2K. Can anyone give me any pointers on this issue? I'm posting here because that's where it says to on the notes. Regards, Tim p.s. apologies if this is my second post - my webmail is playing up :( |
|
From: Ron H. <th...@cc...> - 2002-12-03 17:12:08
|
==>This is just a note to let people know that if they think over the ==>next month I become more silent than usual that I have not deserted ==>things. I am moving house, so with all the hassle of packing up I ==>will be offline for a while. Getting a broadband connection setup ==>kust before christmas is not an easy task, its worse when you dont ==>yet live in the house. Good luck with the move. Lends new meaning to the phrase "Home for the holidays....." Lucky you to have broadband in the house... Best of the Holidays to all and all. HTH As Always r |
|
From: Graham B. <gb...@po...> - 2002-12-03 16:56:35
|
This is just a note to let people know that if they think over the next month I become more silent than usual that I have not deserted things. I am moving house, so with all the hassle of packing up I will be offline for a while. Getting a broadband connection setup kust before christmas is not an easy task, its worse when you dont yet live in the house. Graham. |
|
From: <ad...@ho...> - 2002-12-02 23:08:05
|
u/nHwzIgICAgICAgICAgICAgICAgDQogICAgICAgICAgICAgICAgICAgIA0KICAgICAgICANCiAg ICAgICAgDQogICAgIA0KICAgICAgICAgICAgICANCiAgICAgICAgICAgICAgICAgICAgICAgIFu8 9r3FsMW6zl0NCiAgICAgICAgIA0KICAgICA= |
|
From: Chris R. <chr...@ma...> - 2002-11-28 10:41:46
|
On 28/11/02 10:28 am, Christian Klinger <chr...@ec...>
wrote:
> hello list=20
>=20
> i=B4m a perl newbie and i need help!!
>=20
> i would connect to a ldap server check username and password in if ok
> redirect to a other side
>=20
> i write this script but it don=B4t work
What part of it doesn't work?
[...]
> if ( ($name=3D$query->param('name'))&&($pwd=3D$query->param('passwort'))) {
[...]
> $mesg =3D $ldap->bind($dn =3D> $name,pwd =3D> $passwd, version =3D> 3) || die "Co=
uld
> not bind to LDAP server" ;
You must make sure that $name is a valid DN, eg something like
"cn=3Dcjr,dc=3Disode,dc=3Dcom" otherwise the server will reject the bind.
Cheers,
Chris
|
|
From: Christian K. <chr...@ec...> - 2002-11-28 10:25:38
|
hello list=20
i=B4m a perl newbie and i need help!!
i would connect to a ldap server check username and password in if ok=20
redirect to a other side
i write this script but it don=B4t work
#!/usr/bin/perl -w
use CGI;
use CGI::Carp qw(fatalsToBrowser);
use Net::LDAP;
my $ldap_host =3D "192.168.10.202" ;
my $ldap_port =3D 389 ;
my $ldap_base =3D "o=3Decontec, c=3Dde";
my $dn =3D "";
my $pwd =3D "" ;
my $query =3D new CGI;
print $query->header('text/html'),
$query->start_html(-title=3D>'Login'),
$query->h1("Bitte Name und Passwort angeben");
if ( =
($name=3D$query->param('name'))&&($pwd=3D$query->param('passwort'))) {
$ldap =3D new Net::LDAP('192.168.10.202');
$mesg =3D $ldap->bind($dn =3D> $name,pwd =3D> $passwd, version =3D> 3) =
|| die "Could not bind to LDAP server" ;
if ($mesg->code) {
warn $mesg->error;
} else {=20
&DisplayResult($mesg);
$ldap->unbind();
}
} else {
my $action =3D $query->url;
print $query->startform(-method =3D> 'POST',
-action =3D> $action,
);
print "<TABLE border=3D0>\n";
print "<TR><TD>Name</TD>";
print "<TD>",$query->textfield('name',"",50),
"</TD>";
print "<TD>Passwort</TD>";
print "<TD>",$query->textfield('passwort',"",50),"</TD>
</TR></TABLE>";
print $query->br();
print $query->submit();
print $query->endform();
}
print $query->end_html();
##########################################################
# Hilfsfunktionen
##########################################################
sub DisplayResult {
printf("Search did not return any result\n");
#redirect
}
|
|
From: Nicolas C. <nch...@co...> - 2002-11-27 14:58:17
|
Maybe I did not explain the whole point, my script on machine A is
repeatedly doing
binds/unbinds with machine B, and what i expect is that when B machine
suspend system state
bind becomes impossible
>What state is the TCP connection in when you've suspended the server (B)
and
>tried to make a connection from A? Netstat should tell you this.
after suspension of system state on B, socket's state on A is established
and the perl script on A is "frozen" at the instruction
$mesg = $ldap->bind($ldap_dn, password=>$ldap_password);
Thanks for your help,
Best regards,
Nicolas
Pour : Nicolas CHRISTOPHE <nch...@co...>,
<per...@li...>
cc :
Objet : Re: frozen bind instruction
On 27/11/02 8:33 am, Nicolas CHRISTOPHE
<nch...@co...> wrote:
> Dear all,
>
> I would like to know if there is any possibility of timeout with the
> perl-ldap bind instruction.
>
> This is linked to the following troubleshooting : I have got machine A
> redhat 6.2
> with perl script and machine B sunOs 5.6 with ldap database.
> When the B sun machine is powered on I can bind to it succesfully with
the
> following line on machine A :
> $mesg = $ldap->bind($ldap_dn, password=>$ldap_password);
> When I shut the B sun machine down or just stop nds service, the bind
> isn't possible from A and
> that is normal. The problem is when I suspend system state on the sun B
> machine , then the perl
> script is blocked at the above line.
What state is the TCP connection in when you've suspended the server (B)
and
tried to make a connection from A? Netstat should tell you this.
I don't know if there's anything we can change on the socket, or whether
there's some TCP variable that can be tuned on the Sun.
Cheers,
Chris
|
|
From: Chris R. <chr...@ma...> - 2002-11-27 10:44:34
|
On 27/11/02 8:33 am, Nicolas CHRISTOPHE <nch...@co...> wrote: > Dear all, > > I would like to know if there is any possibility of timeout with the > perl-ldap bind instruction. > > This is linked to the following troubleshooting : I have got machine A > redhat 6.2 > with perl script and machine B sunOs 5.6 with ldap database. > When the B sun machine is powered on I can bind to it succesfully with the > following line on machine A : > $mesg = $ldap->bind($ldap_dn, password=>$ldap_password); > When I shut the B sun machine down or just stop nds service, the bind > isn't possible from A and > that is normal. The problem is when I suspend system state on the sun B > machine , then the perl > script is blocked at the above line. What state is the TCP connection in when you've suspended the server (B) and tried to make a connection from A? Netstat should tell you this. I don't know if there's anything we can change on the socket, or whether there's some TCP variable that can be tuned on the Sun. Cheers, Chris |
|
From: Nicolas C. <nch...@co...> - 2002-11-27 08:33:10
|
Dear all,
I would like to know if there is any possibility of timeout with the
perl-ldap bind instruction.
This is linked to the following troubleshooting : I have got machine A
redhat 6.2
with perl script and machine B sunOs 5.6 with ldap database.
When the B sun machine is powered on I can bind to it succesfully with the
following line on machine A :
$mesg = $ldap->bind($ldap_dn, password=>$ldap_password);
When I shut the B sun machine down or just stop nds service, the bind
isn't possible from A and
that is normal. The problem is when I suspend system state on the sun B
machine , then the perl
script is blocked at the above line.
Thanks a lot for any help or suggestion.
Best regards,
Nicolas Christophe
|
|
From: Chris R. <chr...@ma...> - 2002-11-26 19:52:15
|
On 26/11/02 7:35 pm, Paul Harwood <pha...@wi...> wrote:
> I can't seem to get this to work at all. I am using a Windows client.
> Here's what I've done:
>
>
> 1) Downloaded the .PM file.
> 2) Created a NET directory under c:\perl\lib
> 2) Copied the LDAP.PM file to c:\perl\lib\Net
> 3) Created Convert directory under c:\perl\lib.
> 4) Copied the Convert::ASN1 file (ASN1.PM) to the c:\perl\lib\convert
> directory.
>
>
> Whenever I "use NET::LDAP" on line 1 of my script, I get :
>
> Can't locate Convert/ASN1/_decode.pm in @INC (@INC contains: C:/Perl/lib
> C:/Perl/site/lib .) at C:/Perl/lib/Convert/ASN1
> .pm line 382.
> BEGIN failed--compilation aborted at C:/Perl/lib/Convert/ASN1.pm line
> 388.
> Compilation failed in require at C:/Perl/lib/LDAP.pm line 11.
> BEGIN failed--compilation aborted at C:/Perl/lib/LDAP.pm line 11.
> Compilation failed in require at C:\download\mytest.pl line 3.
> BEGIN failed--compilation aborted at C:\download\mytest.pl line 3.
>
>
> Question:
>
> Is there something wrong with the ASN1 module or is there something else
> not configured?
> I don't understand what _decode.pm is. Another module?
Yes.
You should really try to install perl-ldap correctly, ie using the command
line:
perl Makefile.PL
make
make install
You *might* have to use the same make program that was used when building
your perl, especially on Windows.
If you don't have the right sort of make or otherwise want to live
dangerously ;-) just copy the contents of the lib directory into an
appropriate perl library directory. This is described in the INSTALL
document in the perl-ldap distribution.
Cheers,
Chris
|
|
From: Paul H. <pha...@wi...> - 2002-11-26 19:35:39
|
I can't seem to get this to work at all. I am using a Windows client. Here's what I've done: 1) Downloaded the .PM file. 2) Created a NET directory under c:\perl\lib 2) Copied the LDAP.PM file to c:\perl\lib\Net 3) Created Convert directory under c:\perl\lib. 4) Copied the Convert::ASN1 file (ASN1.PM) to the c:\perl\lib\convert directory.=20 Whenever I "use NET::LDAP" on line 1 of my script, I get : Can't locate Convert/ASN1/_decode.pm in @INC (@INC contains: C:/Perl/lib C:/Perl/site/lib .) at C:/Perl/lib/Convert/ASN1 .pm line 382. BEGIN failed--compilation aborted at C:/Perl/lib/Convert/ASN1.pm line 388. Compilation failed in require at C:/Perl/lib/LDAP.pm line 11. BEGIN failed--compilation aborted at C:/Perl/lib/LDAP.pm line 11. Compilation failed in require at C:\download\mytest.pl line 3. BEGIN failed--compilation aborted at C:\download\mytest.pl line 3. Question: Is there something wrong with the ASN1 module or is there something else not configured? I don't understand what _decode.pm is. Another module?=20 Any help on this very appreciated. --Paul |
|
From: Graham B. <gb...@po...> - 2002-11-26 15:22:23
|
----- Forwarded message from rajeev <ra...@ne...> -----
Date: Tue, 26 Nov 2002 20:33:28 +0530
To: gb...@po...
From: rajeev <ra...@ne...>
Subject: Hi
Hi Graham Barr,
I am Rajeev, I have written one perl scrit to add entry at the Ldap server,
It works fine with linux system,but creats problem with suse 7.3 sparc ,
actually it adds the entry but return LDAP_OPERATIONS_ERROR instead of
LDAP_SUCCESS.
#!/usr/bin/perl -w
#CGI/1.1 Perl user functions to access DB
#
use Net::LDAP;
use Net::LDAP::Constant qw(:all);
use Net::LDAP::LDIF qw(:all);
use Net::LDAP::Message;
use CGI;
my($ldap) = Net::LDAP->new("localhost") or die "can't open connection!\n";
my $basedn="dc=Abc";
my $username="cn=manager";
my $dn="$username,$basedn";
my $password="secret";
my $key="123";
my $dial="dial";
#print $basedn,$username,$dn,$password,$key,$dial,"\n\n";
$ldap->bind(dn=>$dn,password=>$password) or return -1;
$result=$ldap->add(dn=>"dialFile=$key,$basedn", attr=>[
'objectClass'=>"dial", 'key'=>$key, 'dial'=>$dial]);
print $result->error,"!\n\n";
print $result->code,"\n\n";
$ldap->unbind;
******************
OUTPUT IS
I/O Error Resource temporarily unavailable !
1
Query : Is it my code problem or some thing with suse OS.
----- End forwarded message -----
|
|
From: Chris R. <chr...@ma...> - 2002-11-21 17:49:13
|
On 21/11/02 5:38 pm, Edouard FAUCHILLE <edo...@pa...> wrote:
> Hi,
>
> I'm trying to develop a perl server which intercept ldap Outlook requests in
> order to translate it in SQL.
> The aim is to to retrieve informations from sql databases, with an ldap
> client like Outlook.
>
> I'm using the "Convert" package, but i can't understand how it work.
> I have this error msg :
>
> decode error 30<=>60 at
> /usr/lib/perl5/site_perl/5.6.0/Convert/ASN1/_decode.pm line 108,
> <SOCK_SERVICE> line 1.
> ...propagated at test_serveur_ldap.pl line 99, <SOCK_SERVICE> line
> 1.
>
> with this code :
>
> ...
> 91 $asn = Convert::ASN1->new;
> 92 $asn->prepare(q<
> 93 [APPLICATION 0] SEQUENCE {
> 94 version INTEGER,
> 95 name OCTET STRING,
> 96 authentication ANY OPTIONAL}
> 97 >) or die $!;
> 98
> 99 $out = $asn->decode($demande) or die $!;
> 100 print "\nversion : ".$out->{version};
> 101 print "\nname : ".$out->{name};
> 102 print "\nautentication : ".$out->{authentication};
> ...
>
> The $demande var contains "30 84 00 00 00 11 02 02 01 00 60 84 00 00 00 07
> 02 01 03 04 00 80 00 30 84 00 00 00 08 02 20 01 01 50 02 01 00 30 84 00 00
> 00 06 02 02 01 02 42 00" which seems to be OK for the BindRequest.
LDAP is a binary protocol, so your $demande variable should be the actual
bytes you got from the network, not text. In other words in perl
"\x30\x84\x00..."
Otherwise the way you're using Convert::ASN1 looks about right.
Cheers,
Chris
|
|
From: Edouard F. <edo...@pa...> - 2002-11-21 17:39:20
|
Hi,
I'm trying to develop a perl server which intercept ldap Outlook requests in
order to translate it in SQL.
The aim is to to retrieve informations from sql databases, with an ldap
client like Outlook.
I'm using the "Convert" package, but i can't understand how it work.
I have this error msg :
decode error 30<=>60 at
/usr/lib/perl5/site_perl/5.6.0/Convert/ASN1/_decode.pm line 108,
<SOCK_SERVICE> line 1.
...propagated at test_serveur_ldap.pl line 99, <SOCK_SERVICE> line
1.
with this code :
...
91 $asn = Convert::ASN1->new;
92 $asn->prepare(q<
93 [APPLICATION 0] SEQUENCE {
94 version INTEGER,
95 name OCTET STRING,
96 authentication ANY OPTIONAL}
97 >) or die $!;
98
99 $out = $asn->decode($demande) or die $!;
100 print "\nversion : ".$out->{version};
101 print "\nname : ".$out->{name};
102 print "\nautentication : ".$out->{authentication};
...
The $demande var contains "30 84 00 00 00 11 02 02 01 00 60 84 00 00 00 07
02 01 03 04 00 80 00 30 84 00 00 00 08 02 20 01 01 50 02 01 00 30 84 00 00
00 06 02 02 01 02 42 00" which seems to be OK for the BindRequest.
Maybe it's very easy, maybe not. It could be a syntax error or a ldap
comprehension error or ... , so, as a newbie, I would appreciate advice,
information or docs about that.
Thanks you very much,
Edouard.
|
|
From: <Rai...@bo...> - 2002-11-18 15:32:59
|
Short feedback: I crosschecked my "ILS problem" with another solaris maschine. And I detected another difference. Running version Perl 5.6.0 sun4-solaris works Running version Perl 5.6.0 sun4-solaris-thread-multi doesnt work. All working version (Linux, Solaris) are non multi-threaded perl interpreter... The only perl version compiled as multithreaded doesn't work. rainer > -----Original Message----- > From: Harald Wagener [mailto:hwa...@ha...] > Sent: Monday, November 18, 2002 10:17 AM > To: Rai...@bo... > Subject: Re: Perl-Ldap and Netmeeting ILS-Server >=20 >=20 >=20 > Am Samstag, 16.11.02 um 01:51 Uhr schrieb=20 > Rai...@bo...: > > >=20 > [snip] >=20 > > The only difference I see so far, concerning this problems is: > > =A0 > > =A0Solaris (V 5.8), Perl: 5.6.0 > > =A0Suse-Linux (2.4.10)=A0 Perl: 5.6.1 > > =A0 > > Are there any known ldap problems in perl 5.6.0??? > > =A0 > > Any idea? > > |
|
From: Christopher A B. <ca...@tc...> - 2002-11-15 17:47:29
|
As Douglas Pace once put it so eloquently:
> I was wondering if it was possible to change passwords on Active
> Directory using Net::LDAP? I've searched quite a bit, and found examples
> using JNDI, but I can't seem to make it work using Net::LDAP. If it is
> possible, I would be extremely grateful for some sample source, because
> I have simply run out of ideas.
Heh, this seems to be a FAQ.
There's two requirements for password changes:
(1) You MUST use LDAPS (LDAP over SSL)
(2) You MUST format the password in a particular way (16-bit-wide
characters, surrounded by literal double-quotes, base64 encoded):
# now, if there's still a unicodePwd, then UTF-16(?) it
# and base64 encode it and make sure it gets sent that way.
$password_for_unicodePwd_attribute
= pack "v*", unpack "C*", qq("$password");
# note: Net::LDAP does the base64 encoding for you
I don't know whether it was just our situation that required it or
not, but you might have to send the update to the primary domain
controller (you can identify it using DNS by looking up the SRV record
for _ldap._tcp.pdc._msdcs.yourdomain.xxx, although that will return
the non-SSL port number; you'll have to override it as 636 for LDAPS).
%% Christopher A. Bongaarts %% ca...@tc... %%
%% Internet Services %% http://umn.edu/~cab %%
%% University of Minnesota %% +1 (612) 625-1809 %%
|
|
From: Johnson, B. K <bri...@lm...> - 2002-11-15 15:20:56
|
Hi,
Netmeeting is an odd one. You might try the code below....it has worked for
me with ILS servers....no I am not sure if they are W2k ILS servers.
Strangely, % is the general wildcard NOT * with the ILS servers that I've
mucked around with.
($server)=@ARGV;
use Net::LDAP;
$ldap = new Net::LDAP("$server",port => 389,debug => 0) or die "Connect
failed $server";
$ldap->bind() || die "Bind failed $server";
$filter="(\&(objectClass=RTPerson)(cn=%))";
$mesg = $ldap->search(base => "c=-",filter => $filter) or die "search
died";
foreach $entry ($mesg->all_entries) { $entry->dump; }
-----Original Message-----
From: Eric Nichols [mailto:eri...@di...]
Sent: Friday, November 15, 2002 5:46 AM
To: Rai...@bo...
Cc: per...@li...
Subject: Re: Perl-Ldap and Netmeeting ILS-Server
Without being able to see your code I would try using cn=* rather than %...
Hint: It would help if you posted your code <grin>
Rai...@bo... <mailto:Rai...@bo...> wrote:
Sorry, I didn't get this - I need some further help.
I'm trying to access a W2K ILS-Server (Nettmeeting) with LDAP
(please read below) - and I don't get any response.
Connect to the ils-service works fine (port 1002), bind and or search
stalls.
I also tried to do a bind (to ILS Service) with credentials
(administrator account). It didn't work - bind never returns without
timeout.
Querying an exchange 5.5 server with perl-ldap (with authentification)
is working fine.
A little bit strange seems to be, that a LDAP browser can do an
anonymous bind to the ILS server and retrieve all needed data without
any problem.
So is there any perl-ldap guru, who can tell me what I'm doing wrong?
Normally, this should be a simple task to do (do get any information in the
first step...).
This would be the connect URL used on an NT-Server (with ASP):
LDAP://ilsserver:1002/o=intranet/ou=dynamic;(&(objectClass=RTPerson)
(cn=%));cn,givenName,surName,location;subtree"
Any idea, why a ldap browser can do an anon query, but perl-ldap not?
Tnx for any hint in advance
Rainer
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Mon, 11 Nov 2002 Rai...@bo...
<mailto:Rai...@bo...> wrote:
I need some help for a simple task:
Has anyone managed in accessing the Netmeeting ILS-Service of
Windows2K Advanced Server from ldap-perl (from an unix system)?
Even basic connects are failing with perl-ldap (using a
LDAP-Browser
accessing the LDAP-Structure of the ils server works fine).
...
The Perl-Script (basic code):
$ldap = Net::LDAP->new($ServerName, port => 1002);
$msg = ldap->bind;
AD doesn't allow for searching using an anonymous bind.
Other than the rootDSE of course.
@attrs = [ "giveName" ];
$ldap_result = $ldap->search (
base => "o=IntraNet,ou=Dynamic",
filter => "&(objectClass=RTPerson)(cn=%)",
attrs => @attrs
);
cheers, jerry
-------------------------------------------------------
This sf.net email is sponsored by: To learn the basics of securing
your web site with SSL, click here to get a FREE TRIAL of a Thawte
Server Certificate: http://www.gothawte.com/rd524.html
<http://www.gothawte.com/rd524.html>
|
|
From: Eric N. <eri...@di...> - 2002-11-15 13:46:00
|
Without being able to see your code I would try using cn=* rather than %... Hint: It would help if you posted your code <grin> Rai...@bo... wrote: >Sorry, I didn't get this - I need some further help. > >I'm trying to access a W2K ILS-Server (Nettmeeting) with LDAP >(please read below) - and I don't get any response. >Connect to the ils-service works fine (port 1002), bind and or search >stalls. > > >I also tried to do a bind (to ILS Service) with credentials >(administrator account). It didn't work - bind never returns without >timeout. >Querying an exchange 5.5 server with perl-ldap (with authentification) >is working fine. > > >A little bit strange seems to be, that a LDAP browser can do an >anonymous bind to the ILS server and retrieve all needed data without >any problem. > >So is there any perl-ldap guru, who can tell me what I'm doing wrong? >Normally, this should be a simple task to do (do get any information in the >first step...). > >This would be the connect URL used on an NT-Server (with ASP): > > LDAP://ilsserver:1002/o=intranet/ou=dynamic;(&(objectClass=RTPerson) > (cn=%));cn,givenName,surName,location;subtree" > > >Any idea, why a ldap browser can do an anon query, but perl-ldap not? > > >Tnx for any hint in advance > >Rainer > > > > > >>-----BEGIN PGP SIGNED MESSAGE----- >>Hash: SHA1 >> >>On Mon, 11 Nov 2002 Rai...@bo... wrote: >> >> >> >>>I need some help for a simple task: >>> >>>Has anyone managed in accessing the Netmeeting ILS-Service of >>>Windows2K Advanced Server from ldap-perl (from an unix system)? >>> >>>Even basic connects are failing with perl-ldap (using a >>> >>> >>LDAP-Browser >> >> >>>accessing the LDAP-Structure of the ils server works fine). >>> >>> >>... >> >> >>>The Perl-Script (basic code): >>> >>> >>> $ldap = Net::LDAP->new($ServerName, port => 1002); >>> $msg = ldap->bind; >>> >>> >>AD doesn't allow for searching using an anonymous bind. >>Other than the rootDSE of course. >> >> >> >>> @attrs = [ "giveName" ]; >>> >>> $ldap_result = $ldap->search ( >>> base => "o=IntraNet,ou=Dynamic", >>> filter => "&(objectClass=RTPerson)(cn=%)", >>> attrs => @attrs >>> ); >>> >>> >>cheers, jerry >> >> > > >------------------------------------------------------- >This sf.net email is sponsored by: To learn the basics of securing >your web site with SSL, click here to get a FREE TRIAL of a Thawte >Server Certificate: http://www.gothawte.com/rd524.html > > > > |
|
From: <Rai...@bo...> - 2002-11-15 13:32:33
|
Sorry, I didn't get this - I need some further help.
I'm trying to access a W2K ILS-Server (Nettmeeting) with LDAP
(please read below) - and I don't get any response.
Connect to the ils-service works fine (port 1002), bind and or search
stalls.
I also tried to do a bind (to ILS Service) with credentials
(administrator account). It didn't work - bind never returns without
timeout.
Querying an exchange 5.5 server with perl-ldap (with authentification)
is working fine.
A little bit strange seems to be, that a LDAP browser can do an
anonymous bind to the ILS server and retrieve all needed data without
any problem.
So is there any perl-ldap guru, who can tell me what I'm doing wrong?
Normally, this should be a simple task to do (do get any information in the
first step...).
This would be the connect URL used on an NT-Server (with ASP):
LDAP://ilsserver:1002/o=intranet/ou=dynamic;(&(objectClass=RTPerson)
(cn=%));cn,givenName,surName,location;subtree"
Any idea, why a ldap browser can do an anon query, but perl-ldap not?
Tnx for any hint in advance
Rainer
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Mon, 11 Nov 2002 Rai...@bo... wrote:
>
> > I need some help for a simple task:
> >
> > Has anyone managed in accessing the Netmeeting ILS-Service of
> > Windows2K Advanced Server from ldap-perl (from an unix system)?
> >
> > Even basic connects are failing with perl-ldap (using a
> LDAP-Browser
> > accessing the LDAP-Structure of the ils server works fine).
> ...
> > The Perl-Script (basic code):
> >
> >
> > $ldap = Net::LDAP->new($ServerName, port => 1002);
> > $msg = ldap->bind;
>
> AD doesn't allow for searching using an anonymous bind.
> Other than the rootDSE of course.
>
> >
> > @attrs = [ "giveName" ];
> >
> > $ldap_result = $ldap->search (
> > base => "o=IntraNet,ou=Dynamic",
> > filter => "&(objectClass=RTPerson)(cn=%)",
> > attrs => @attrs
> > );
>
>
> cheers, jerry
|
|
From: Douglas P. <Dou...@NA...> - 2002-11-14 22:35:59
|
I was wondering if it was possible to change passwords on Active Directory using Net::LDAP? I've searched quite a bit, and found examples using JNDI, but I can't seem to make it work using Net::LDAP. If it is possible, I would be extremely grateful for some sample source, because I have simply run out of ideas. Thanks Douglas Pace |
|
From: Nicolas C. <nch...@co...> - 2002-11-13 14:56:48
|
Hello,
Ok, I have three machines
A running a dynamic name server (redhat 6.2) (script perl)
B and C two LDAPs databases (sun solaris 6)
A name server on machine A polls regularly machines B and C to check if
nds service is available.
Everything works fine ; when for example I disconnect B or C from network
or if
I stop nds service on B or C machines the script on machine A keeps on
running and polling B/C.
The problem is when on machine B I press the key "suspend system state"
(sun key which freeze, save system state and then power off the machine)
the perl script
on A seems to freeze while connecting to ldap at the following lines ; If
I stop and start
the script everything goes right.
$ldap = Net::LDAP->new($host, timeout => $ldap_timeout);
if ( ! $@ ) {
$mesg = $ldap->bind($ldap_dn, password => $ldap_password );
if ( ! $mesg->code ) {
.../... < code here >
}
$ldap->unbind;
(with $host being B machine and $ldap_timeout set to 1s)
Thanks a lot for any help or suggestion.
Best regards,
Nicolas Christophe |
|
From: Todd <net...@ch...> - 2002-11-12 19:59:47
|
You are the man! Commenting out the unbind gave me: # ldap.pl myid mypass uid=myid,ou=PROD-XYZ-VW-COM,ou=internal,ou=xyzoa,dc=xyz,dc=com Can't locate object method "shift_entry" via package "Net::LDAP::Bind" (perhaps you forgot to load "Net::LDAP::Bind"?) at E:\Inetpub\scripts\ldap.pl line 35. So I commented out the callback and presto! # ldap.pl myid mypass uid=myid,ou=PROD-XYZ-VW-COM,ou=internal,ou=xyzoa,dc=xyz,dc=com # ldap.pl myid wrongpass uid=myid,ou=PROD-XYZ-VW-COM,ou=internal,ou=xyzoa,dc=xyz,dc=com Return code: 49 Message: LDAP_INVALID_CREDENTIALS : The wrong password was supplied or the SASL credentials could not be processed MessageID: 3 DN: Thanks! -Todd On Tue, 12 Nov 2002, Chris Ridd wrote: > > One possibility is that the server doesn't like you rebinding after sending > an unbind on the connection. The socket you've got open isn't actually > closed (despite your comment!) until the $ldap object is destroyed. > > There's actually no real need to unbind at all as the standard supports > issuing multiple binds on the same connection, so maybe just delete the > $ldap->unbind call and see what happens. > > Cheers, > > Chris > |
7902 messages has been excluded from this view by a project administrator.
