Article delegate-en/1072 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]

Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: Delegated and LDAPS
30 Mar 2001 07:21:22 GMT Sevcik Jaroslav <pfecabdyi-rcwevediz7tr.ml@ml.delegate.org>


I tried it, but again it doesn solve it :(

Delegated start:
# delegated -P389 SERVER=ldaps FSV=sslway ADMIN=root PERMIT="*:*:*"


... and log again:
03/30 08:50:53.95 [6922] 3+0: 059  2  8 03c 1.2.8. [UNV 16]( 0)
03/30 08:50:53.95 [6922] 3+0:
LDAP-SERVER=[@makrela.anect.cz:636]=[makrela.anect.cz:636]

- resolvation to IP address is always through "hosts" file, with parameters
RESOLV=file, it also doesnt work
- coudnt be in the following line something like "lnxtest.anect.com:3449 =>
ldaps://makrela.anect.cz:636"

03/30 08:50:53.96 [6922] 3+0: E-P: No permission: lnxtest.anect.com:3449 =>
ldap://makrela.anect.cz:636
03/30 08:50:53.96 [6922] 3+0: bind_insock(7,10.148.10.61,0) = 0
03/30 08:50:53.97 [6922] 3+0: [10] doDelay connect failed 127.0.0.1:1150
[0.00s] errno=111
03/30 08:50:53.97 [6922] 3+0: doDelay: delaying reject*2 (8/60second)
lnxtest.anect.com:3449[1]


1. Could you help me solve this problem in relative short time, I want to
use this product in some project ? 
2. I try it on testing environment, I can do anything with compilation or
configuration, also I am able to send you any part of logs ?
3. I believe you are able to understand to my english :)
4. Thanks a lot for yuor answer and great software (maybe with a little
bugs:))

Jaroslav Sevcik



-----Original Message-----
From: feedback@delegate.org [mailto:feedback@delegate.org]
Sent: Thursday, March 29, 2001 6:45 PM
To: feedback@delegate.org
Cc: pfecabdyi-rcwevediz7tr.ml@ml.delegate.org
Subject: Re: [DeleGate-En] Delegated and LDAPS


 |Thanks for your answer, but your advice doesnt solve this problem, here is
 |log file:
 |
 |Delegated start
 |proxy_server# delegated -P389 SERVER=ldaps FSV=sslway
...
 |% ldapsearch -h proxy_server -b dc=gov@ldap_server:636 cn=tester*
...
 |I mean, here is the problem, naybe software bug ?
 |
 |03/29 17:08:05.88 [6452] 1+0: E-P: No permission: ldap.mpsv.cz:1645 =>
 |ldap://10.16.8.101:636

You may need to add some basic access control parameter like
PERMIT="*:*:*.mpsv.cz".  See <Manual.htm#PERMIT> for more details.

But I can't understand why your first example (with SERVER=ldaps://host)
worked without this problem...

Cheers,
Yutaka
--
Yutaka Sato <ysato@delegate.org> http://www.delegate.org/~ysato/   @ @ 
Computer Science Division, Electrotechnical Laboratory            ( - )
1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan                  _<   >_


  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V