On Sun, Jul 23, 2006 at 02:52:26PM -0400, Lou Vasquez wrote:
> I don't know why I didn't think to try that. Must be the years of
> having to compile debug into code and run in a debugger.
>
> I tried it just now but it doesn't look like its in a loop. It just
> hangs. See below. It's clearly getting the right answer (the cn), but
> it's almost like it's expecting more but never gets it. Like I said
> though the same search with ldapsearch from the cmd line works great.
>
> Just in case in all my other changes something in the config has changed
> I'm attaching that too.
>
> Thanks,
> Lou
>
> ***config
> server_condition = \
> ${lookup ldap\
>
> {user="cn=<snip>,cn=Users,dc=ercbroadband,dc=local" \
> pass=<snip> \
>
> ldaps://chapman.ercbroadband.org/cn=Users,dc=ercbroadband,dc=local?cn?sub?(sAMAccountName=$1)}\
> {works}fail}}
Can you go 'ldap' rather than 'ldaps', you might get a better idea of what is happening.
Have you tried 'ltrace' -- strace's 1st cousin, can sometimes give a different perspective
on what is happening.
I assume that file descriptor 10 is the socket to the ldap server.
I also assume that the same query works when you use 'ldapsearch'.
Can you look at the ldap server logs ... does it tell you what queries/answers it is getting ?
--
Alain Williams
Parliament Hill Computers Ltd.
Linux Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer.
+44 (0) 787 668 0256
http://www.phcomp.co.uk/
#include <std_disclaimer.h>
