The LDAP hack was working on my 2.0.7 website. The new standard mechanism doesn't work. I'm sure I don't have it setup correctly. A few questions:

1) The old ldap hack used the following setup:

//LDAP directory parameters
var $uid_attr = "uid";
var $mail_attr = "mail";
var $name_attr = "cn";
var $surname_attr = "sn";
var $givenname_attr = "givenname";
var $location_attr = "l";
var $office_attr = "physicaldeliveryofficename";
//var $sernum_attr= "gestelnumber";
var $ldap_server = "hq-net1.oem.doe.gov";
var $ldap_port = 389;
var $base_dn = "ou=People,dc=oem,dc=doe,dc=gov";

I see no password here. What password is the new mechanism looking for? The one for rootpw in slapd.conf?

2) I see references to MD5 in the ldap hack but I see SSHA in slapd.conf. What should be what?

3) The password for "The password of the user allow to make search", is this password for "ou=Manager", or "ou=people" ?

Am I asking the right questions?

Thanks

Doug P

Slapd output from the old ldap hack that works:

slapd[638]: conn=54441 op=1 BIND dn="uid=phillipd,ou=People,dc=oem,dc=doe,dc=gov" method=128
slapd[638]: ==> ldbm_back_bind: dn: uid=phillipd,ou=People,dc=oem,dc=doe,dc=gov
slapd[638]: send_ldap_result: err=49 matched="" text=""
slapd[638]: conn=54441 op=1 RESULT tag=97 err=49 text=
slapd[638]: connection_get(24)
slapd[638]: conn=54441 op=2 UNBIND
slapd[638]: conn=54441 fd=24 closed

Slapd output from the new mechanism: Note there is something missing in the "dn" and the "op" is different.

slapd[638]: conn=54453 op=0 BIND dn="ou=People,dc=oem,dc=doe,dc=gov" method=128
slapd[638]: send_ldap_result: err=13 matched="" text="confidentiality required"
slapd[638]: conn=54453 op=0 RESULT tag=97 err=13 text=confidentiality required
slapd[638]: connection_get(24)
slapd[638]: conn=54453 op=1 UNBIND
slapd[638]: conn=54453 fd=24 closed