ldap-sync with ms chap v2 authentification

Volker Stoppe Grenzlaeufer at gmx.net
Thu Jan 31 11:08:33 CET 2008 

Hallo together,

I want to sync oder just transfer the kolab user to a win2003 active  
directory to integrate them better into outlook. The authentification on  
the windows site is done by kerberos/ms chap v2. Is it possible to  
authenticate from the linux site with such a server?
How do I configure it.


At the moment I get from the "python ldapsync.py" an error-messge.
The Base looks like:
ad_base_dn = "dc=AD001,dc=company,dc=tld"
kolab_base_dn = "dc=company,dc=tld"

Can anybody tell me in which line of the config.py to look for the wrong  
syntax?

Traceback (most recent call last):
   File "ldapsync.py", line 137, in main
     sync_ldap_servers()
   File "ldapsync.py", line 86, in sync_ldap_servers
     perform_sync()
   File "ldapsync.py", line 62, in perform_sync
     T.transfer()
   File "/opt/ldap-sync/transferrer.py", line 146, in transfer
     source_data = self.read_ldap(self.source, self.source.user_search)
   File "/opt/ldap-sync/transferrer.py", line 187, in read_ldap
     return dict(server.search(search, attrlist=attrlist))
   File "/opt/ldap-sync/transferrer.py", line 90, in search
     conn.simple_bind_s(self.bind_dn, self.bind_pw)
   File "/usr/lib64/python2.5/site-packages/ldap/ldapobject.py", line 199,  
in simple_bind_s
     return self.result(msgid,all=1,timeout=self.timeout)
   File "/usr/lib64/python2.5/site-packages/ldap/ldapobject.py", line 428,  
in result
     res_type,res_data,res_msgid = self.result2(msgid,all,timeout)
   File "/usr/lib64/python2.5/site-packages/ldap/ldapobject.py", line 432,  
in result2
     res_type, res_data, res_msgid, srv_ctrls =  
self.result3(msgid,all,timeout)
   File "/usr/lib64/python2.5/site-packages/ldap/ldapobject.py", line 438,  
in result3
     rtype, rdata, rmsgid, serverctrls =  
self._ldap_call(self._l.result3,msgid,all,timeout)
   File "/usr/lib64/python2.5/site-packages/ldap/ldapobject.py", line 97,  
in _ldap_call
     result = func(*args,**kwargs)
INVALID_DN_SYNTAX: {'info': 'invalid DN', 'desc': 'Invalid DN syntax'}


Greetinx

Volker

More information about the users mailing list