Results 1 to 8 of 8

Thread: [SOLVED] Zimbra's LDAP server

  1. #1
    Join Date
    May 2008
    Location
    Taiwan
    Posts
    296
    Rep Power
    7

    Default [SOLVED] Zimbra's LDAP server

    Dear All,

    try to use "ldapsearch" command to get user's ldap information, and i found there's no "userPassword" attribute ??

    does anyone know why, or where does zimbra store user's passwd?
    Thanks.


    e.g.
    ldapsearch -h 192.168.1.17 -p 389 -b "ou=people,dc=example,dc=com" -x -a never -D "uid=admin,ou=people,dc=example,dc=com" -W

    command returns:

    Code:
    dn: uid=kevin.hsu,ou=people,dc=example,dc=com
    zimbraMailTransport: lmtp:mailz.example.com:7025
    zimbraMailDeliveryAddress: kevin.hsu@example.com
    sn: kevin.hsu
    zimbraMailStatus: enabled
    zimbraId: 48273705-03eb-4f19-a315-e25bb295a514
    mail: kevin.hsu@example.com
    displayName: kevin.hsu
    uid: kevin.hsu
    objectClass: organizationalPerson
    objectClass: zimbraAccount
    objectClass: amavisAccount
    cn: kevin.hsu
    zimbraMailHost: mailz.example.com

  2. #2
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    The user's password (and many other attributes) are hidden from binds of all users but the root LDAP user. General users or anonymous binds do not see this information.

  3. #3
    Join Date
    May 2008
    Location
    Taiwan
    Posts
    296
    Rep Power
    7

    Default

    Thanks for your reply.

    So, what's the User DN for "LDAP root user" ?

    running zmlocalconfig, i found there's one : zimbra_ldap_userdn = uid=zimbra,cn=admins,cn=zimbra , is this one the LDAP root UserDN?

    Thanks.

  4. #4
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    Yep that's the one I use at least.

  5. #5
    Join Date
    May 2008
    Location
    Taiwan
    Posts
    296
    Rep Power
    7

    Default

    i'm sorry, but i can't have this work :

    ldapsearch -h 192.168.1.19 -p 389 -D "uid=zimbra,cn=admins,cn=zimbra" -b "ou=people,dc=example,dc=com" -x -a never -W

    still returned: ldap_bind: Invalid credentials (49)

    i'm sure my ldap root passwd is correct, i even also tried to reset it by : zmldappasswd -r new_password

    any advice ? Thanks in advance.

  6. #6
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    Hmmm only suggestion that I have is to try using -H instead of -h and -p. The following works perfectly for me:
    Code:
    ldapsearch -H "ldap://email.domain.com:389" -D "uid=zimbra,cn=admins,cn=zimbra" -b "ou=people,dc=domain,dc=com" -x -a never -W

  7. #7
    Join Date
    May 2008
    Location
    Taiwan
    Posts
    296
    Rep Power
    7

    Default

    Thanks so much.

    and i found my problem is that i entered the wrong password.

    originally i thought i should enter the passwd of "ldap_root_password" and this is not correct. People should use the passwd of "zimbra_ldap_password".

    mark it as solved. Thanks.

  8. #8
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    Interesting, good to know. On my system they are the same which is probably why it has always worked for me

Similar Threads

  1. Moving to new external LDAP server
    By Mark Daniel in forum Administrators
    Replies: 1
    Last Post: 03-30-2009, 01:41 PM
  2. [SOLVED] Why my MTA Cross???
    By fsloke in forum Installation
    Replies: 6
    Last Post: 07-30-2008, 09:55 PM
  3. [SOLVED] Build Zimbra..a little problem...
    By Abdelmonam Kouka in forum Developers
    Replies: 33
    Last Post: 05-22-2008, 06:10 AM
  4. Replies: 2
    Last Post: 05-24-2006, 11:01 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •