Forum Stats

  • 3,815,479 Users
  • 2,259,036 Discussions
  • 7,893,119 Comments

Discussions

OUD - When ldapsearch used, "additional info: ....." not displaying

Hi,

In the case of getting a disabled account info, I get "additional info:....." using ldapsearch from the ODSEE directory but I don't get that from the OUD directory as seen below. Is there a way to get that from OUD using ldapsearch as well? I also used OUD's ldapsearch but no "additional info:....." is there too.

  • from ODSEE:

$ /data01/ODSEE/dsee7/dsrk/bin/ldapsearch -h <HOST> -p 389 -b dc=entp,dc=tgc -e -1 -T -v -D "uid=user1,ou=people,dc=entp,dc=tgc" -j x uid=bora dn

bin_ldapsearch: started Sun Dec 5 04:11:43 2021


ldap_init( ldapenterpriseprod.turkcell.tgc, 389 )

ldap_simple_bind: DSA is unwilling to perform

ldap_simple_bind: additional info: Account inactivated. Contact system administrator.

  • from OUD:

$ /data01/ODSEE/dsee7/dsrk/bin/ldapsearch -h <HOST> -p 1389 -b dc=entp,dc=tgc -e -1 -T -v -D "uid=user1,ou=people,dc=entp,dc=tgc" -j x uid=bora dn      

bin_ldapsearch: started Sun Dec 5 04:12:21 2021


ldap_init( marathoner2.turkcell.tgc, 2389 )

ldap_simple_bind: Invalid credentials

--

Thanks,

-Bora

Tagged:

Answers

  • DebA-Oracle
    DebA-Oracle Member Posts: 17 Employee

    To obtain additional information, it is required to use "+" for OUD.

    Examples below are both without and then with the "+".

    Observe that the ldapsearch which comes with OUD returns more information with and without the use of "+". Way more information when using "+", so much that I clipped a lot of it out.

    ==============================

    Using ODSEE dsrk bin ldapsearch:

    bin_ldapsearch: started Mon Dec 13 12:05:01 2021

    ldap_init( localhost, 4389 )

    filter pattern: uid=user.1018949

    returning: dn

    filter is: (uid=user.1018949)

    dn: uid=user.1018949,ou=People,dc=example,dc=com

    ==============================

    Using OUD dsrk bin ldapsearch:

    ==============================

    [OUD bin]# ./ldapsearch -p 4389 -b "dc=example,dc=com" -e -1 -T -v -D "uid=user.1013146,ou=People,dc=example,dc=com" -j x uid=user.1018949 dn

    12:08:04.024 protocol verbose LDAPMessage(msgID=1, protocolOp=BindRequest(version=3, dn=uid=user.1013146,ou=People,dc=example,dc=com, password=******))

    12:08:04.028 protocol verbose WRITE ASN.1 START SEQUENCE(type=0x30)

    12:08:04.029 protocol verbose WRITE ASN.1 INTEGER(type=0x2, length=1, value=1)

    12:08:04.029 protocol verbose WRITE ASN.1 START SEQUENCE(type=0x60)

    12:08:04.029 protocol verbose WRITE ASN.1 INTEGER(type=0x2, length=1, value=3)

    12:08:04.029 protocol verbose WRITE ASN.1 OCTETSTRING(type=0x4, length=44)

    12:08:04.029 protocol verbose WRITE ASN.1 OCTETSTRING(type=0x80, length=10)

    12:08:04.030 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:08:04.030 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:08:04.030 protocol verbose bytes written to wire(len=68):

       30 42 02 01 01 60 3D 02  01 03 04 2C 75 69 64 3D  

       75 73 65 72 2E 31 30 31  33 31 34 36 2C 6F 75 3D  

       50 65 6F 70 6C 65 2C 64  63 3D 65 78 61 6D 70 6C  

       65 2C 64 63 3D 63 6F 6D  80 0A 69 70 6C 61 6E 65  

       74 73 75 6E                                       

    12:08:04.039 protocol verbose READ ASN.1 START SEQUENCE(type=0x30, length=12)

    12:08:04.039 protocol verbose READ ASN.1 INTEGER(type=0x2, length=1, value=1)

    12:08:04.039 protocol verbose READ ASN.1 START SEQUENCE(type=0x61, length=7)

    12:08:04.040 protocol verbose READ ASN.1 INTEGER(type=0xa, length=1, value=0)

    12:08:04.040 protocol verbose READ ASN.1 END SEQUENCE

    12:08:04.040 protocol verbose READ ASN.1 END SEQUENCE

    12:08:04.040 protocol verbose bytes read from wire(len=14):

       30 0C 02 01 01 61 07 0A  01 00 04 00 04 00       0   a        

    12:08:04.040 protocol verbose LDAPMessage(msgID=1, protocolOp=BindResponse(resultCode=0))

    12:08:04.041 protocol verbose LDAPMessage(msgID=2, protocolOp=SearchRequest(baseDN=dc=example,dc=com, scope=sub, derefPolicy=never, sizeLimit=0, timeLimit=0, typesOnly=false, filter=(uid=user.1018949), attributes={dn}))

    12:08:04.041 protocol verbose WRITE ASN.1 START SEQUENCE(type=0x30)

    12:08:04.041 protocol verbose WRITE ASN.1 INTEGER(type=0x2, length=1, value=2)

    12:08:04.042 protocol verbose WRITE ASN.1 START SEQUENCE(type=0x63)

    12:08:04.042 protocol verbose WRITE ASN.1 OCTETSTRING(type=0x4, length=17)

    12:08:04.042 protocol verbose WRITE ASN.1 INTEGER(type=0xa, length=1, value=2)

    12:08:04.042 protocol verbose WRITE ASN.1 INTEGER(type=0xa, length=1, value=0)

    12:08:04.042 protocol verbose WRITE ASN.1 INTEGER(type=0x2, length=1, value=0)

    12:08:04.042 protocol verbose WRITE ASN.1 INTEGER(type=0x2, length=1, value=0)

    12:08:04.043 protocol verbose WRITE ASN.1 BOOLEAN(type=0x1, length=1, value=false)

    12:08:04.043 protocol verbose WRITE ASN.1 START SEQUENCE(type=0xa3)

    12:08:04.043 protocol verbose WRITE ASN.1 OCTETSTRING(type=0x4, length=3, value=uid)

    12:08:04.043 protocol verbose WRITE ASN.1 OCTETSTRING(type=0x4, length=12)

    12:08:04.043 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:08:04.044 protocol verbose WRITE ASN.1 START SEQUENCE(type=0x30)

    12:08:04.044 protocol verbose WRITE ASN.1 OCTETSTRING(type=0x4, length=2, value=dn)

    12:08:04.044 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:08:04.044 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:08:04.044 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:08:04.044 protocol verbose bytes written to wire(len=68):

       30 42 02 01 02 63 3D 04  11 64 63 3D 65 78 61 6D 0B  c=  dc=exam

       70 6C 65 2C 64 63 3D 63  6F 6D 0A 01 02 0A 01 00 ple,dc=c om     

       02 01 00 02 01 00 01 01  00 A3 13 04 03 75 69 64               uid

       04 0C 75 73 65 72 2E 31  30 31 38 39 34 39 30 04   user.1 0189490

       04 02 64 6E                                         dn

    12:08:04.045 protocol verbose READ ASN.1 START SEQUENCE(type=0x30, length=53)

    12:08:04.046 protocol verbose READ ASN.1 INTEGER(type=0x2, length=1, value=2)

    12:08:04.046 protocol verbose READ ASN.1 START SEQUENCE(type=0x64, length=48)

    12:08:04.046 protocol verbose READ ASN.1 OCTETSTRING(type=0x4, length=44, value=uid=user.1018949,ou=People,dc=example,dc=com)

    12:08:04.050 protocol verbose READ ASN.1 START SEQUENCE(type=0x30, length=0)

    12:08:04.050 protocol verbose READ ASN.1 END SEQUENCE

    12:08:04.050 protocol verbose READ ASN.1 END SEQUENCE

    12:08:04.050 protocol verbose READ ASN.1 END SEQUENCE

    12:08:04.051 protocol verbose bytes read from wire(len=55):

       30 35 02 01 02 64 30 04  2C 75 69 64 3D 75 73 65 05  d0 ,uid=use

       72 2E 31 30 31 38 39 34  39 2C 6F 75 3D 50 65 6F r.101894 9,ou=Peo

       70 6C 65 2C 64 63 3D 65  78 61 6D 70 6C 65 2C 64 ple,dc=e xample,d

       63 3D 63 6F 6D 30 00                              c=com0

    12:08:04.051 protocol verbose LDAPMessage(msgID=2, protocolOp=SearchResultEntry(dn=uid=user.1018949,ou=People,dc=example,dc=com, attrs={}))

    dn: uid=user.1018949,ou=People,dc=example,dc=com

    12:08:04.051 protocol verbose READ ASN.1 START SEQUENCE(type=0x30, length=12)

    12:08:04.051 protocol verbose READ ASN.1 INTEGER(type=0x2, length=1, value=2)

    12:08:04.051 protocol verbose READ ASN.1 START SEQUENCE(type=0x65, length=7)

    12:08:04.051 protocol verbose READ ASN.1 INTEGER(type=0xa, length=1, value=0)

    12:08:04.052 protocol verbose READ ASN.1 END SEQUENCE

    12:08:04.052 protocol verbose READ ASN.1 END SEQUENCE

    12:08:04.052 protocol verbose bytes read from wire(len=14):

       30 0C 02 01 02 65 07 0A  01 00 04 00 04 00       0   e        

    12:08:04.052 protocol verbose LDAPMessage(msgID=2, protocolOp=SearchResultDone(resultCode=0))

    12:08:04.052 protocol verbose LDAPMessage(msgID=3, protocolOp=UnbindRequest())

    12:08:04.052 protocol verbose WRITE ASN.1 START SEQUENCE(type=0x30)

    12:08:04.052 protocol verbose WRITE ASN.1 INTEGER(type=0x2, length=1, value=3)

    12:08:04.053 protocol verbose WRITE ASN.1 NULL(type=0x42, length=0)

    12:08:04.053 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:08:04.053 protocol verbose bytes written to wire(len=7):

       30 05 02 01 03 42 00                              0   B

    =======================================================================================

    Using "+"  examples below using both ldapsearch versions again:

    =======================================================================================

    [ODSEE dsrk bin]# # ./ldapsearch -p 4389 -b "dc=example,dc=com" -e -1 -T -v -D "uid=user.1013146,ou=People,dc=example,dc=com" -j x uid=user.1018949 dn "+"

    bin_ldapsearch: started Mon Dec 13 12:14:42 2021

    ldap_init( localhost, 4389 )

    filter pattern: uid=user.1018949

    returning: dn +

    filter is: (uid=user.1018949)

    dn: uid=user.1018949,ou=People,dc=example,dc=com

    orclGUID: C871361B98964EE4959AA5DA3869BC03

    pwdPolicySubentry: cn=testMinPwdLength,dc=example,dc=com

    subschemaSubentry: cn=schema

    changelog: cn=changelog

    pwdChangedTime: 20160506165618.229Z

    createTimestamp: 20160506165618Z

    numSubordinates: 0

    structuralObjectClass: inetOrgPerson

    hasSubordinates: false

    nsUniqueId: c871361b-98964ee4-959aa5da-3869bc03

    entryDN: uid=user.1018949,ou=people,dc=example,dc=com

    entryUUID: c871361b-9896-4ee4-959a-a5da3869bc03

    creatorsName: cn=directory manager

    modifyTimestamp: 20211213165438Z

    modifiersName: cn=Internal Client,cn=Root DNs,cn=config

    1 matches

    =======================================================================================

    [OUD bin]# # ./ldapsearch -p 4389 -b "dc=example,dc=com" -e -1 -T -v -D "uid=user.1013146,ou=People,dc=example,dc=com" -j x uid=user.1018949 dn "+"

    12:11:15.138 protocol verbose LDAPMessage(msgID=1, protocolOp=BindRequest(version=3, dn=uid=user.1013146,ou=People,dc=example,dc=com, password=******))

    12:11:15.143 protocol verbose WRITE ASN.1 START SEQUENCE(type=0x30)

    12:11:15.144 protocol verbose WRITE ASN.1 INTEGER(type=0x2, length=1, value=1)

    12:11:15.144 protocol verbose WRITE ASN.1 START SEQUENCE(type=0x60)

    12:11:15.144 protocol verbose WRITE ASN.1 INTEGER(type=0x2, length=1, value=3)

    12:11:15.144 protocol verbose WRITE ASN.1 OCTETSTRING(type=0x4, length=44)

    12:11:15.145 protocol verbose WRITE ASN.1 OCTETSTRING(type=0x80, length=10)

    12:11:15.145 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:11:15.145 protocol verbose WRITE ASN.1 END SEQUENCE(length=0)

    12:11:15.145 protocol verbose bytes written to wire(len=68):

       30 42 02 01 01 60 3D 02  01 03 04 2C 75 69 64 3D  

       75 73 65 72 2E 31 30 31  33 31 34 36 2C 6F 75 3D  

       50 65 6F 70 6C 65 2C 64  63 3D 65 78 61 6D 70 6C  

       65 2C 64 63 3D 63 6F 6D  80 0A 69 70 6C 61 6E 65  

       74 73 75 6E                                       

    <REMOVED A WHOLE BUNCH OF INFO TO SAVE SPACE>