LDAP Proxy Server/Client configuration
807573Jul 31 2007 — edited Oct 9 2007Hi all
I have a working set of clients connecting to an LDAP server DSEE6.1. These clients are runing Solaris 8, 9 and 10 with OpenSSH and sudo, both authenticating using PAM and, therefore, using LDAP. The authentication mechanism from the client to the server is sasl/digest-md5.
Now I'm trying to configure a proxy connection between my clients and my LDAP server, in fact we have three servers.
Bcz all the documents cover the server installation and forget the client connection, i have few questions:
1. What is the authentication mechanism I have to use from the client to the server: none, simple or sasl/digest-md5?
2. I have these error message from the DPS error log file: " No servers available to process SEARCH in data source pool cn=defaultdatasourcepool,cn=datasource pools,cn=config". Checking the DP configuration (dpconf) seems that all the DataSource, DataPool and Views are ok but I'm not sure.
3. The Bind DN, when using proxy, I presume, can be the object "cn=proxyagent,ou=profile,dc=nz,dc=thenational,dc=com". But, if the client is connecting trough a Proxy, how it can use this object which is stored into the DS? Do I have to set up a configuration from the DPS to the DS to use this object as well?
4. Which ACIs do I have to set up to allow communication from the proxy to the server?
Thanks in advance,
Andreas