Hello again,

Having successfully upgraded my LDAP install to 2.4.22 on Redhat 5.3 I've been looking at use of the 'slapo-memberof' schema as provided by openldap2.4-server package.

The man page for slapo-memberof2.4 indicates I can use the 'memberof-dn' directive.

So, I've updated my slapd.conf file to allow the 'moduleload      memberof.la' to be used and restarted ldap2.4 services. On the client I have configured my ldap.conf without the memberof directive and it works fine, but when I use memberof I can no longer login.

nss_base_passwd                ou=people,dc=ldn,dc=sw,dc=com
Works fine

nss_base_passwd         ou=people,dc=ldn,dc=sw,dc=com?sub?memberof-dn=cn=access,ou=auth,dc=ldn,dc=sw,dc=com
Fails to log me in.

I can see the people and auth OU's from the client using ldapsearch.

Questions:
What is the correct syntax for using the memberof-dn directive?
If the client does NOT have the openldap2.4-server package installed, does it pass the 'memberof-dn' directive to my LDAP server to be parsed?

TIA,

Stuart.

---

Get a new e-mail account with Hotmail - Free. Sign-up now.