I'm trying to configure an indirect ldap bind since I have email accounts
scattered about in different branches of my ldap directory. The login page
indicates "wrong username or password." If I set the baseDN to
ou=people,dc=denison,dc=edu then it works:
SOGoUserSources = (
{
CNFieldName = cn;
IDFieldName = uid;
UIDFieldName = uid;
baseDN = "dc=denison,dc=edu";
bindDN = "uid=sogo,ou=mgmt,dc=denison,dc=edu";
bindPassword = qwerty;
canAuthenticate = YES;
displayName = "Denison Addresses";
encryption = STARTTLS;
filter = "(objectClass = 'qmailUser')";
scope = SUB;
bindfields = (uid, cn);
hostname = ldap.cache.denison.edu;
id = Denison;
isAddressBook = YES;
port = 389;
type = ldap;
}
I verified that "reitsma" is unique in the directory:
ldapsearch -x -H ldaps://ldap.cache.denison.edu -D cn=Manager,dc=denison,dc=edu
-W -LLL -b dc=denison,dc=edu "(&(uid=reitsma)(objectClass=qmailUser))" dn
Enter LDAP Password:
dn: uid=reitsma,ou=people,dc=denison,dc=edu
ldapsearch -x -H ldaps://ldap.cache.denison.edu -D cn=Manager,dc=denison,dc=edu
-W -LLL -b dc=denison,dc=edu "(&(cn=Charlie Reitsma)(objectClass=qmailUser))" dn
Enter LDAP Password:
dn: uid=reitsma,ou=people,dc=denison,dc=edu
--
Charlie Reitsma
x6642
--
[email protected]
https://inverse.ca/sogo/lists
