In order to ease the confusion for some of our users, I'm trying to
configure a system that will accept either the uid or mail LDAP
attributes for login to SOGo. I've setup a test system which seems to
work for this. Here's the SOGoUserSources I'm using:
CNFieldName = cn;
IDFieldName = uid;
UIDFieldName = mail;
bindFields = (uid);
baseDN = "ou=users,dc=4test,dc=net";
bindDN = "uid=sogo,ou=users,dc=4test,dc=net";
bindPassword = secret;
canAuthenticate = YES;
displayName = "Shared Addresses";
encryption = STARTTLS;
hostname = ldap3.4test.net;
id = shared;
isAddressBook = YES;
port = 389;
What's strange is that when the sogo user binds to and searches the
directory, I see this search logged:
Feb 25 15:25:40 ldap3 slapd[26601]: conn=171 op=2 SRCH
base="ou=users,dc=4test,dc=net" scope=2 deref=0
filter="(|(mail=steve)(mail=steve)(uid=steve))"
Why the extra mail=steve in the search string? Shouldn't it be just
filter="(|(mail=steve)(uid=steve))"?
Steve
--
[email protected]
https://inverse.ca/sogo/lists
