 | ||
 OpenLDAP Integration failed! | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Search this Thread | Display Modes |
 2006-10-26 | |||
| |||
 OpenLDAP Integration failed! Hi everybody, I could solve the SunONE Directory Server Integration problem! Although the RootDN is displayed as cn=Directory Manager, you have to type "cn=directory manager" in the LDAP Account Unit of Check Point. Another strange thing is, that as far as you created another administrator, his RootDN is NOT cn=dsadmin,ou=support,dc=company,dc=com but:uid=dsadmin,ou=support,dc=company,dc=com!!!!! This is true although an entry with cn= is created for that particular user! As a Novell CNE and CNI, it is not very intuitive for me to unterstand the philosophy of the naming convention of Sun ONE Directory Server! The other problem I have is the integration of OpenLDAP with Check Point. Although, I can browse the Directory with LDAPBrowser (Softerra), I cannot authenticate the LDAP Account Unit with the same RootDN! One ugly thing is, if you use an anonymous BIND with your Internet Explorer like this: ldap://10.20.30.210/dc=konolab,dc=com??sub?(objectclass=*) you will get one object, which correspond to that of the Manager But, if you type: ldap://10.20.30.210/dc=konolab,dc=com??sub?uid=* you won't get any one user object. So, the Manager does not reside within the Domain dc=konolab,dc=com. This seems to be the crucial problem, which has to be solved in order to be successful with the whole integration! Any ideas? Any hint will highly be appreciated! Thank you in advance, Yasushi  |
|
| Thread Tools | Search this Thread |
| Display Modes | |
| |
Linear Mode
