replication problem with LDAP server in Thunderbird
Gunnar_...@web.de
I've setup an OpenLDAP server to store an address to use in
Thunderbird. LDAP works well to create contacts using Apache Directory
Studio or other LDAP clients and querying contact information to
display in Thunderbird is working properly.
The only problem I have is to get the replication working to allow
Thunderbird to create a local copy of the directory to have the
address book information available when the PC running Thunderbird has
no internet connection to the LDAP server. I always get the
"replication failed" failed error when trying to download the
information from within Thunderbird's address book.
So which login information and dn is used by Thunderbird in order to
create an offline copy of the database? If (as I assume) the same
authentication is used as for querying contact information when
browsing the address book why fails the creation of an offline copy?
Which configuration on the server is required in order to get it
working?
The structure in general is as follows:
dc=the,dc=server,dc=com
-> ou=userName
-> cn=userName
-> ou=AddressBook
The user "userName" has his address book contacts in ou AddressBook.
slapd.conf contains:
access to dn.base="cn=Manager,dc=the,dc=server,dc=com"
by dn="cn=Manager,dc=the,dc=server,dc=com" write
by anonymous auth
by * none
access to dn.subtree="ou=gfrenzel,dc=the,dc=server,dc=com"
by dn="cn=Manager,dc=the,dc=server,dc=com" write
by dn="cn=userName,ou=userName,dc=the,dc=server,dc=com" write
by anonymous auth
by * none
access to *
by dn="cn=Manager,dc=the,dc=server,dc=com" write
by self write
by users read
by anonymous auth
Thanks in advance.
Gunnar
Hans Benedict
On 2008-01-03 22:10 Gunnar_...@web.de wrote:
> I've setup an OpenLDAP server to store an address to use in
> Thunderbird. LDAP works well to create contacts using Apache Directory
> Studio or other LDAP clients and querying contact information to
> display in Thunderbird is working properly.
> The only problem I have is to get the replication working to allow
> Thunderbird to create a local copy of the directory to have the
> address book information available when the PC running Thunderbird has
> no internet connection to the LDAP server. I always get the
> "replication failed" failed error when trying to download the
> information from within Thunderbird's address book.
> So which login information and dn is used by Thunderbird in order to
> create an offline copy of the database? If (as I assume) the same
> authentication is used as for querying contact information when
> browsing the address book why fails the creation of an offline copy?
> Which configuration on the server is required in order to get it
> working?
I am using a similar setup and found that the problem is on the client
side. In case of replication, Thunderbird allways sends an empty dn,
allthough everything is fine, when it performs a search. From the slapd
logfile for the replication event:
Jan 22 11:31:12 a7:abcdefg slapd[29722]: conn=5658 fd=86 ACCEPT from
IP=XX.XX.XX.XX:XX (IP=YY.YY.YY.YY:YY)
Jan 22 11:31:12 a7:abcdefg slapd[29722]: conn=5658 fd=86 TLS established
tls_ssf=256 ssf=256
Jan 22 11:31:12 a7:abcdefg slapd[29722]: conn=5658 op=0 BIND dn=""
method=128
Jan 22 11:31:12 a7:abcdefg slapd[29722]: conn=5658 op=0 RESULT tag=97
err=0 text=
Jan 22 11:31:12 a7:abcdefg slapd[29722]: conn=5658 op=1 SRCH
base="ou=a,o=bc,c=de" scope=2 deref=0 filter="(objectClass=*)"
Jan 22 11:31:12 a7:abcdefg slapd[29722]: conn=5658 op=1 SEARCH RESULT
tag=101 err=50 nentries=0 text=
Jan 22 11:31:12 a7:abcdefg slapd[29722]: conn=5658 op=2 UNBIND
Jan 22 11:31:12 a7:abcdefg slapd[29722]: conn=5658 fd=86 closed
I presume this is a bug...
Regards,
Hans