I noticed that but assumed that since I don't have any outgoing firewall
restrictions (I'll double check that) that this wasn't the problem. I
tried snooping the packets to see if it was doing this but forgot that I
was using ldaps and couldn't see didly.
I'll try implementing the patch and compiling from scratch this week if
I can get to it. First I'm going to try debugging from AD as well as my
perl hack, but I'd rather have a good patch in the long run :)
Thanks,
Lou
Alain Williams wrote:
> On Fri, Jul 21, 2006 at 07:15:25AM -0700, lbv wrote:
>
>> Ultimately I need to do an ldap auth against an AD ldap server, but I need to
>> convert the username (lvasquez) to a cn (Lou Vasquez) before I can specify
>> the user and this isn't working right. I do a basic ldap lookup to get the
>> cn. Once I get the cn I will put that into the ldapauth, but the ldap is
>> failing all by itself.
>>
>> I've reduced it to a plain ldap search inside an "if" and its simply hanging
>> when it gets the cn. The pertinent config and d+all debug are pasted below.
>> Exim is already running on port 25 separately and is restarted with each
>> config change but that shouldn't be the problem as I can get this to
>> authenticate just fine if I put the correct cn right into an ldapauth.
>>
>> Any help would be appreciated.
>> ....
>>
>
> That looks like the problem that I had last week, it is trying to follow referrals
> but cannot access the servers that it has been referred to. You need to give the option
> referrals=nofollow
> as an ldap parameter (after user=... pass=...).
>
> Since I only sent in the patch for the referrals option last week it is not in
> main line exim (yet), so download the exim-snapshot from:
>
> ftp.exim.org:/pub/exim/Testing
>
> Please let us know if it works and what your OS, etc, are.
>
> Cheers
>
>
