my issue is i need to install a rpm. i can take the RH entreprise 5 rpm for openldap : version 2.3.27 is it enough to have this wonderful feature ? if not, whitch is the first version i can have it ? Thanks, Thomas
Message du 08/01/07 à 12h22 De : "Pierangelo Masarati" A : jerrrry@voila.fr Copie à : openldap-software@openldap.org Objet : Re: openldap proxy issue
jerrrry@voila.fr wrote:
thank you very much: it works very well with slapd(8) 2.3.27.
my issue now is that i will have to use the package supplied by RH enteprise 4: openldap-servers-2.2.13-6.4E
and with this version i get this message:
unknown directive "idassert-bind" inside backend database definition (ignored)
line 80 (idassert-authzfrom "dn.regex=.+")
slapd doesn't know idassert-authzfrom !
so, do you know if there is an other directive with this version that enable me to do the same things (anonymous bind rewrite as an admin DN)
- no there isn't.
- in 2.2, libldap and proxy backends were very buggy; things are much
better now (2.3.32), and will be even better with 2.3.33. There is no good reason (not even support: you won't get any from RedHat) to stay with that old buggy version.
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.n.c. Via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it
Office: +39.02.23998309 Mobile: +39.333.4963172 Email: pierangelo.masarati@sys-net.it
jerrrry@voila.fr wrote:
my issue is i need to install a rpm. i can take the RH entreprise 5 rpm for openldap : version 2.3.27
is it enough to have this wonderful feature ?
yes, it is. Whether you can install an RPM for one version on another version, I don't know (and it's outside the scope of this list, I guess).
if not, whitch is the first version i can have it ?
Just for the records: this feature, as well as other proxy related stuff, will be further upgraded in the next release, OpenLDAP 2.3.33. The code is already available vis CVS under the tag OPENLDAP_REL_ENG_2_3.
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.n.c. Via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it ------------------------------------------ Office: +39.02.23998309 Mobile: +39.333.4963172 Email: pierangelo.masarati@sys-net.it ------------------------------------------
On Lun 8 janvier 2007 16:29, jerrrry@voila.fr a écrit :
my issue is i need to install a rpm. i can take the RH entreprise 5 rpm for openldap : version 2.3.27 is it enough to have this wonderful feature ? if not, whitch is the first version i can have it ?
You also could build your own RPM, with the OpenLDAP version. http://www.linux.org/docs/ldp/howto/RPM-HOWTO/build.html http://www.rpm.org/RPM-HOWTO/
Or find a version of OpenLDAP already packaged : http://rpm.pbone.net
Good luck.
-----Original Message----- From: openldap-software-bounces+mhardin=symas.com@OpenLDAP.org [mailto:openldap-software-bounces+mhardin=symas.com@OpenLDAP.org] On Behalf Of Raphael Berlamont Sent: Monday, January 08, 2007 9:09 AM To: jerrrry@voila.fr Cc: Pierangelo Masarati; openldap-software@openldap.org Subject: Re: openldap proxy issue
On Lun 8 janvier 2007 16:29, jerrrry@voila.fr a écrit :
my issue is i need to install a rpm.
[...]
Or find a version of OpenLDAP already packaged : http://rpm.pbone.net
Raphael leaves out http://www.symas.com if you need a commercially supported distribution of OpenLDAP that is tested and packaged with its dependent libraries.
Cheers,
Matthew Hardin Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
Good luck.
-- Raph.
(please don't top-post)
On Monday 08 January 2007 17:29, jerrrry@voila.fr wrote:
my issue is i need to install a rpm.
This may help you then:
http://anorien.warwick.ac.uk/mirrors/buchan/openldap/rhel4/
(I'll try and upload 2.3.32 tomorrow)
i can take the RH entreprise 5 rpm for openldap : version 2.3.27 is it enough to have this wonderful feature ?
Yes, but then you'll be stuck on 2.3.27 forever (as you were stuck with 2.2.13 on RHEL4).
if not, whitch is the first version i can have it ? Thanks, Thomas
Message du 08/01/07 à 12h22 De : "Pierangelo Masarati" A : jerrrry@voila.fr Copie à : openldap-software@openldap.org Objet : Re: openldap proxy issue
jerrrry@voila.fr wrote:
thank you very much: it works very well with slapd(8) 2.3.27.
my issue now is that i will have to use the package supplied by RH enteprise 4: openldap-servers-2.2.13-6.4E
and with this version i get this message:
unknown directive "idassert-bind" inside backend database definition (ignored)
line 80 (idassert-authzfrom "dn.regex=.+")
slapd doesn't know idassert-authzfrom !
so, do you know if there is an other directive with this version that enable me to do the same things (anonymous bind rewrite as an admin DN)
- no there isn't.
- in 2.2, libldap and proxy backends were very buggy; things are much
better now (2.3.32), and will be even better with 2.3.33. There is no good reason (not even support: you won't get any from RedHat) to stay with that old buggy version.
p.
Ing. Pierangelo Masarati OpenLDAP Core Team
SysNet s.n.c. Via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it
Office: +39.02.23998309 Mobile: +39.333.4963172 Email: pierangelo.masarati@sys-net.it
openldap-software@openldap.org
-
Buchan Milne -
jerrrry@voila.fr -
Matthew Hardin -
Pierangelo Masarati -
Raphael Berlamont