[KLUG Members] debug ldap failure

[Adam Williams]

> After looking more carefully at things. The option for bindDN and 
> password are there as optional in case you do not allow anon bind for 
> looking at attributes. It is just as you say, once the search finds a 
> record it should attempt to bind with that user and the supplied password.

Ok.  Still odd that it is requesting the userPassword attribute,

> I am finding that I am not getting the search results I expect however. 
> For some reason if I just list out the database I can see the user and 
> the attribute mail (that is being search on) is there and valid. However 
> when I perform a specific search on that mail attibute it comes up 
> empty. I even tried searching on the uid value and still get no results. 
> Any idea as to why my searches are coming up empty?
> host:ldapsearch -a never -b "dc=home,dc=ricksweb,dc=info" -h localhost -x
> <---snip--->
> # rharding, home.ricksweb.info
> dn: uid=rharding,dc=home,dc=ricksweb,dc=info
...
> mail: rharding
...

Do you have any indexes declared on the mail attribute?

> This is the search that returns nothing:
> host:ldapsearch -a never -b "dc=home,dc=ricksweb,dc=info" -h localhost 
> -x mail=rharding
> # extended LDIF
> #
> # LDAPv3
> # base <dc=home,dc=ricksweb,dc=info> with scope sub
> # filter: mail=rharding
> # requesting: ALL
> #
> 
> # search result
> search: 2
> result: 0 Success