<div dir="ltr">Hi,<br><div class="gmail_quote">2008/10/8 Scott Owen <span dir="ltr"><<a href="mailto:sowen@edzone.net">sowen@edzone.net</a>></span><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Hi all,<br>
<br>
I seem to be making some headway getting the LDAP authentication working<br>
betwixt Koha and Netware/NDS/LDAP.<br>
<br>
A quick glance at the two login attempts below , shows that a username<br>
(in my case "test") without the full NDS context will not authenticate<br>
and will generate a failed user/password combination.<br>
<br>
However, using a NDS fully qualified distinguished name (in my case<br>
cn=test,ou=students,o=SCHOOL) seems to generate a successful login ?<br>
(Sending operation result 0:"":"" to connection 0xa7684b60)<br>
But then dies later on ......(Duplicate entry 'cn=test,ou=stude')<br>
<br>
A quick peek at the borrowers in the Koha MySQL data base (CSV export)<br>
<br>
<br>
338 71582 FA ZA PINE AVENUE ALMA<br>
339 71583 BR AU PINE AVENUE ALMA<br>
340 44863 ED ZA PINE AVENUE ALMA<br>
</blockquote><div><br>Those entries Are really weird.<br> <br></div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">341 cn=41337,ou=stud<br>
342 cn=test,ou=stude<br>
343 71584 test test 123 happy lane alma<br>
<br>
<br>
Shows that my test users (test and 41337) are being added to the<br>
borrowers ???? (FA ZA etc...are truncated user lastnames, firstnames...I<br>
truncated them for this post)<br>
And that my LDAP attrib mapping in NDS are correct (the firstname,<br>
lastname address and city are all correct for my "test" user...but they<br>
are under a user named 71584.....I have no idea where this username came<br>
from....but I'm guessing it was automagically added (after the two real<br>
studend ID number of 71582 and 71583))<br>
<br>
So...I'm guessing that some playing with the LDAP section of the Auth.pm<br>
file may allow me to use just a used ID (41337) rather than the fully<br>
qualified distinguished name ??? Any Ideas on that ??<br>
</blockquote><div><br>afaict, it is trying to add two borrowers when one should be enough, and adding a borrower with LDAP database information. Maybe there is a problem with some doublequoted data, maybe a problem of parenthesis in your data.<br>
<br></div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><br>
Any ideas on the Duplicate entry error ?? (or might this go away as<br>
soon as the logins are working properly ???)<br>
<br>
<br>
<br>
<br>
<br>
********************************<br>
Logging in as "test"<br>
<br>
<br>
--Intranet Error Log --<br>
New cleartext connection 0xa7684b60 from <a href="http://10.1.1.192:3081" target="_blank">10.1.1.192:3081</a>, monitor =<br>
0x259, index = 1<br>
DoBind on connection 0xa7684b60<br>
Bind name:test, version:3, authentication:simple<br>
Illegal ndsname "test" in ldap2uNDSDN, err = 34 (0x22)<br>
ldap2uNDSDN ldapDN = "test" - error 34 (0x22)<br>
Failed to convert LDAP DN "test" in nds_back_bind, err = 34 (0x22)<br>
Sending operation result 34:"":"" to connection 0xa7684b60<br>
Operation 0x1:0x60 on connection 0xa7684b60 completed in 0 seconds<br>
Monitor 0x259 found connection 0xa7684b60 socket closed, err = -5871, 0<br>
of 0 bytes read<br>
Monitor 0x259 initiating close for connection 0xa7684b60<br>
Server closing connection 0xa7684b60, socket error = -5871<br>
<br>
<br>
<br>
--DStrace Error Log--<br>
[Wed Oct 08 10:01:47 2008] [error] [client <a href="http://127.0.0.1" target="_blank">127.0.0.1</a>] LDAP Auth failed<br>
server not responding or wrong user password combination at<br>
c:/usr/koha229/intranet/modules/C4/Auth.pm line 528., referer:<br>
<a href="http://127.0.0.1:8000/cgi-bin/koha/mainpage.pl" target="_blank">http://127.0.0.1:8000/cgi-bin/koha/mainpage.pl</a><br>
<br>
<br>
*******************************************************<br>
<br>
<br>
Logging in as cn=test,ou=students,o=SCHOOL<br>
<br>
--Intranet Error Log --<br>
New cleartext connection 0xa7684b60 from <a href="http://10.1.1.192:3088" target="_blank">10.1.1.192:3088</a>, monitor =<br>
0x259, index = 1<br>
DoBind on connection 0xa7684b60<br>
Bind name:cn=test,ou=students,o=SCHOOL, version:3, authentication:simple<br>
Sending operation result 0:"":"" to connection 0xa7684b60<br>
Operation 0x1:0x60 on connection 0xa7684b60 completed in 0 seconds<br>
DoSearch on connection 0xa7684b60<br>
Search request:<br>
base: "OU=STUDENTS,O=SCHOOL"<br>
scope:2 dereference:2 sizelimit:0 timelimit:0 attrsonly:0<br>
filter: "(cn=cn=test,ou=students,o=SCHOOL)"<br>
no attributes<br>
Empty attribute list implies all user attributes<br>
Sending operation result 0:"":"" to connection 0xa7684b60<br>
Operation 0x2:0x63 on connection 0xa7684b60 completed in 0 seconds<br>
Monitor 0x259 found connection 0xa7684b60 socket closed, err = -5871, 0<br>
of 0 bytes read<br>
Monitor 0x259 initiating close for connection 0xa7684b60<br>
Server closing connection 0xa7684b60, socket error = -5871<br>
Connection 0xa7684b60 closed<br>
<br>
<br>
--DStrace Error Log--<br>
[Wed Oct 08 10:14:01 2008] [error] [client <a href="http://127.0.0.1" target="_blank">127.0.0.1</a>] DBD::mysql::st<br>
execute failed: Duplicate entry 'cn=test,ou=stude' for key 1 at<br>
c:/usr/koha229/intranet/modules/C4/Members.pm line 155., referer:<br>
<a href="http://127.0.0.1:8000/cgi-bin/koha/mainpage.pl" target="_blank">http://127.0.0.1:8000/cgi-bin/koha/mainpage.pl</a><br>
************************************************<br>
_______________________________________________<br>
Koha mailing list<br>
<a href="mailto:Koha@lists.katipo.co.nz">Koha@lists.katipo.co.nz</a><br>
<a href="http://lists.katipo.co.nz/mailman/listinfo/koha" target="_blank">http://lists.katipo.co.nz/mailman/listinfo/koha</a><br>
</blockquote></div><br></div>