You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2015/08/18 16:11:34 UTC

[Bug 58257] New: require ldap-group does not work if account-fullname in AD/Samba4 contains comma

https://bz.apache.org/bugzilla/show_bug.cgi?id=58257

            Bug ID: 58257
           Summary: require ldap-group does not work if account-fullname
                    in AD/Samba4 contains comma
           Product: Apache httpd-2
           Version: 2.4.10
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: mod_ldap
          Assignee: bugs@httpd.apache.org
          Reporter: dudleyperkins@gmail.com

Just spend hours on this and wanted to mention it here, as i could not find a
related bug.

System is a Debian Jessie with current apache 2.4.10 packages.

Simple Basic (LDAP-)Authentication is used, within a location section, against
a Jessie with samba4.

AuthType Basic
    AuthName "SSL-Gateway"
    AuthBasicProvider ldap
    AuthLDAPURL
"ldap://dc.domain.de/ou=Test,dc=domain,dc=de?sAMAccountName?sub?(objectClass=*)"
    AuthLDAPBindDN "ldap@domain.de"
    AuthLDAPBindPassword "pass"
    Require ldap-group cn=test,ou=Test,dc=domain,dc=de

This fails if the users-fullname in samba4 contains a comma like
"lastname,firstname".

!It is succesfull if the fullname of the user is changed in samba (removing the
colon)!

!It is also succesfull if the comma in fullname is kept but the "Require
ldap-group" is replaced with a simple "Require valid-user"!

Let me know if more information is needed and or this bug(?) should be filed
against samba4.

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org

[Bug 58257] require ldap-group does not work if account-fullname in AD/Samba4 contains comma

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=58257

dudleyperkins@gmail.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |dudleyperkins@gmail.com

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org