All,
We're testing Zimbra. Trying to configure external LDAP auth to our eDirectory server. Can anyone familiar with the LDAP code comment if Zimbra is looking at the cn attribute?
We have a pretty customized schema, and each user has two cn attributes. One is the username, one is Lastname,Firstname. Ie this filter for me returns two cn's:
'(&(objectclass=selueduperson)(cn=w0114869))'
cn: DeJean,Raymond
cn: W0114869
So the error i'm getting from Zimbra is "javax.naming.AuthenticationException: too many results from search filter!" and in zimbra.log " ldapAuthenticate searchFilter returned more then one result: (&(objectclass=seluEduPerson)(cn=w0114869))"
Of course that filter only returns one entry for my user object, but if Zimbra is looking at the two cn's, it might be a problem. As far as i know it is legal to have multiple cn's on a user object. I had this problem with another app (Serena Collage), and the developer's had to issue a patch for this.
I found this code
http://cvs.zimbra.com:8080/viewrep/~.../LdapUtil.java
which leads me to believe it may be something with the call to the getNameinNamespace function.
Can anyone comment on this? Can i turn on any debug to see what the resultDN is? Is there a way to get Zimbra to use another attribute instead of cn? Thanks for any info... Zimbra looks pretty promising so i'd like to get this working.
ray