Hi, I am facing some problems with authz-regexp configurations. These configurations run for ages on several systems. I only discovered recently, that some errors occured:
# ldapwhoami -Y EXTERNAL -H ldapi:/// SASL/EXTERNAL authentication started SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth SASL SSF: 0 dn:gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
The appropriate lines in slapd.conf:
authz-regexp "gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" "cn=config"
There are still a few more authz-regexp rules that don't work anymore. Any ideas?
-Dieter
On 1/28/19 10:35 PM, Dieter Klünter wrote:
authz-regexp "gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" "cn=config"
Probably something swallows a backslash, maybe the slapd.conf parser. Try "\+". Or better, "[+]" so you won't need to worry about how many of them you need.
Am Tue, 29 Jan 2019 09:12:56 +0100 schrieb Hallvard Breien Furuseth h.b.furuseth@usit.uio.no:
On 1/28/19 10:35 PM, Dieter Klünter wrote:
authz-regexp "gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" "cn=config"
Probably something swallows a backslash, maybe the slapd.conf parser. Try "\+". Or better, "[+]" so you won't need to worry about how many of them you need.
bingo, thanks Hallvard.
-Dieter
openldap-technical@openldap.org
-
Dieter Klünter -
Hallvard Breien Furuseth