directory-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Sam Hauer <sam.ha...@hubspan.com>
Subject Extra Bytes Preventing Auth
Date Sat, 01 May 2010 00:21:05 GMT
I'm attempting to set up an LDAP authentication scheme using Apache Directory Server (1.5.7).

So far, I've been able to successfully authenticate using the Sun/Oracle Java LDAP API, and
have also been able to successfully authenticate using the various open-LDAP tools contained
within a recent CygWin distribution. This implies (to me, at least) that my server is set
up properly. I am not (yet) doing anything complex like TLS.

The problem I am having is with the Microsoft LDAP client library. When I use this library
(C program), the Apache Directory Server denies the authentication with the following message:

[14:47:58] WARN [org.apache.directory.shared.asn1.ber.Asn1Decoder] - The PDU has been fully
decoded but there are still bytes in the buffer.

The bytes sent successfully to the server by the CygWin open-LDAP tools are as follows:

0000-30250201 01602002 01030413 7569643D
0010-61646D69 6E2C6F75 3D737973 74656D80
0020-06736563 726574

The bytes sent in error to the server by the Windows LDAP client are as follows:

0000-30840000 00290201 01608400 00002002
0010-01030413 7569643D 61646D69 6E2C6F75
0020-3D737973 74656D80 06736563 72657430
0030-84000000 05020102 4200

As you can see, there is quite a bit of extra baggage here.

My hope is that someone out there knows of an option (compile time or run time) to the Windows
LDAP client library which will eliminate the extraneous bytes.

Failing that, can someone give a clue as to what this extra data might be?

	- Sam
Mime
View raw message