authz-regexp/olcAuthzRegexp on the log file
Mauricio Tavares
raubvogel at gmail.com
Sun Sep 25 17:33:45 EDT 2011
Let's say I have the following (I am really using slapd.d, but you get
the idea):
authz-regexp: "uid=ldap/slave.domain.com,cn=gssapi,cn=auth"
"cn=admin,dc=domain,dc=com"
How does that work? From what I understand it would map
"uid=ldap/slave.domain.com,cn=gssapi,cn=auth" to
"cn=admin,dc=domain,dc=com". Would I be able to see that happening in
the log file? If so, what is going on in these lines here:
Sep 24 12:06:54 dir slapd[24810]: SASL proxy authorize [conn=1003]:
authcid="ldap/slave.domain.com at DOMAIN.COM"
authzid="ldap/slave.domain.com at DOMAIN.COM"
Sep 24 12:06:54 dir slapd[24810]: conn=1003 op=2 BIND
authcid="ldap/slave.domain.com at DOMAIN.COM"
authzid="ldap/slave.domain.com at DOMAIN.COM"
More information about the Kerberos
mailing list