Network Programming 2000

Project 6 - LDAP
Frequently Asked Questions

Questions:
The LDAP server on monte is not responding! How to deal with commas ldap_modify to delete/change
kerberos and des libraries Too easy Multiple emails
Q: The LDAP server on monte.cs.rpi.edu is not responding!

A:Someone has figured (probably by accident) how to crash the server by sending a bad request. I'm working on a script that will restart the server automatically, so the server should be up all the time from now on, but if it's not just send me email (hollingd@cs.rpi.edu).

Q: The LDAP server is getting confused when I try to add records with "cn=lastname, firstname" as the first component of the DN. How do I deal with having a comma in the middle of a component?

A:There are a number of ways of dealing with this, all documented in RFC 1779 (DN representation). But - it appears that it's becoming a hassle so I've just rebuilt the database without the commas (now it's "cn=firstname lastname").

Q: The LDAP API RFC doesn't really do a good job of describing how to delete or change a record in the database, how do I do these operations?

A:Check the man page for ldap_modify, it provides lots more information.

Q:I've built the openldap libraries on my own machine, but I can't use your Makefile. Specifically I get errors looking for -lkrb -ldes, the compiler doesn't find them.

A:The installation of the OpenLDAP libraries on the CS machines supports kerberos authentication - if your installation does not support kerberos you don't need these libraries to link (just remove them from the Makefile).

Q:Is this project supposed to be this easy? I finished so fast that I'm worried I've missed something!

A:Once you understand LDAP (and there is not that much to understand), this project should be easy.

Q:emaillookup is supposed to return more than one email address if there is more than one in the database. Is email address supposed to be entered as additional email attributes? or are they supposed to be added on to the single email attributes?

For example: 

dn: cn=Dave Hollinger, course=Network Programming, school=RPI
    attribute: email: hollingd@cs.rpi.edu hollid2@rpi.edu
or 
dn: cn=Dave Hollinger, course=Network Programming, school=RPI
    attribute: email: hollingd@cs.rpi.edu
    attribute: email: hollid2@rpi.edu
in looking through the database, I have noticed that some students are using the first method.

A:There should be multiple values for the attribute email, not a single value that holds multiple email addresses seperated by blanks.