Hi, I am very new to ldap and I am struggling setting it up for Caldav server. I am trying to setup ldap sever to work with Caldav Server. I see mapping in stdconfig.py as below. But the mapping does not specify the user password. Would you be able to tell the mapping b/w ldap password attribute and caldav field * What is credentials for? * Would you be to tell the ldap structure to be created to work with Caldav? *Any help will be greatly appreciated.* "ldap": {60 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L60> "recordTypes": ("users", "groups"),61 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L61> "uri": "ldap://localhost/",62 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L62> "credentials": {63 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L63> "dn": None,64 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L64> "password": None,65 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L65> },66 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L66> "rdnSchema": {67 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L67> "base": "dc=example,dc=com",68 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L68> "users": "cn=users",69 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L69> "groups": "cn=groups",70 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L70> "locations": "cn=locations",71 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L71> "resources": "cn=resources",72 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L72> "addresses": "cn=addresses",73 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L73> },74 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L74> "mapping": {75 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L75> "uid": ["apple-generateduid", ],76 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L76> "guid": ["apple-generateduid", ],77 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L77> "shortNames": ["uid", ],78 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L78> "fullNames": ["cn", ],79 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L79> "emailAddresses": ["mail", ],80 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L80> "memberDNs": ["uniqueMember", ],81 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L81> "readWriteProxy": ["icsContact", ],82 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L82> "readOnlyProxy": ["icsSecondaryOwners", ],83 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L83> },84 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L84> "extraFilters": {85 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L85> "users": "",86 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L86> "groups": "",87 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L87> "locations": "",88 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L88> "resources": "",89 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L89> "addresses": "",90 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L90> },91 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L91> }, Best Regards, Gaurav Jain
Also, accounts.xml does contain a password but I am not able to find mapping in ldap config On Mon, May 25, 2015 at 8:33 AM, Gaurav Jain <monkeyfdude@gmail.com> wrote:
Hi,
I am very new to ldap and I am struggling setting it up for Caldav server.
I am trying to setup ldap sever to work with Caldav Server. I see mapping in stdconfig.py as below.
But the mapping does not specify the user password. Would you be able to tell the mapping b/w ldap password attribute and caldav field
* What is credentials for? * Would you be to tell the ldap structure to be created to work with Caldav?
*Any help will be greatly appreciated.*
"ldap": {60 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L60> "recordTypes": ("users", "groups"),61 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L61> "uri": "ldap://localhost/",62 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L62> "credentials": {63 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L63> "dn": None,64 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L64> "password": None,65 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L65> },66 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L66> "rdnSchema": {67 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L67> "base": "dc=example,dc=com",68 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L68> "users": "cn=users",69 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L69> "groups": "cn=groups",70 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L70> "locations": "cn=locations",71 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L71> "resources": "cn=resources",72 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L72> "addresses": "cn=addresses",73 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L73> },74 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L74> "mapping": {75 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L75> "uid": ["apple-generateduid", ],76 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L76> "guid": ["apple-generateduid", ],77 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L77> "shortNames": ["uid", ],78 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L78> "fullNames": ["cn", ],79 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L79> "emailAddresses": ["mail", ],80 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L80> "memberDNs": ["uniqueMember", ],81 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L81> "readWriteProxy": ["icsContact", ],82 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L82> "readOnlyProxy": ["icsSecondaryOwners", ],83 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L83> },84 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L84> "extraFilters": {85 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L85> "users": "",86 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L86> "groups": "",87 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L87> "locations": "",88 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L88> "resources": "",89 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L89> "addresses": "",90 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L90> },91 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L91> },
Best Regards, Gaurav Jain
On May 25, 2015, at 8:33 AM, Gaurav Jain <monkeyfdude@gmail.com> wrote:
Hi,
I am very new to ldap and I am struggling setting it up for Caldav server.
I am trying to setup ldap sever to work with Caldav Server. I see mapping in stdconfig.py as below.
But the mapping does not specify the user password. Would you be able to tell the mapping b/w ldap password attribute and caldav field
You don’t specify a password attribute in Calendar Server's LDAP configuration — authentication is done via an LDAP bind command.
* What is credentials for?
An LDAP administrator might choose to configure their LDAP server to not return certain sensitive attributes to unauthenticated searches, so the “credentials” section allows you to set the dn and password to use to authenticate with the LDAP server in that case.
Thank you for the response. My apologies for asking questions on LDAP. * So, I assume Calendar Server will use LDAP bind command to authenticate user against LDAP. My question is which LDAP password will it use to authenticate the user supplied password received at 8008/8443? Where is the LDAP password located that LDAP bind command will use to login/authenticate incoming user. Best Regards, Gaurav Jain On Mon, May 25, 2015 at 9:53 AM, Morgen Sagen <sagen@apple.com> wrote:
On May 25, 2015, at 8:33 AM, Gaurav Jain <monkeyfdude@gmail.com> wrote:
Hi,
I am very new to ldap and I am struggling setting it up for Caldav server.
I am trying to setup ldap sever to work with Caldav Server. I see mapping in stdconfig.py as below.
But the mapping does not specify the user password. Would you be able to tell the mapping b/w ldap password attribute and caldav field
You don’t specify a password attribute in Calendar Server's LDAP configuration — authentication is done via an LDAP bind command.
* What is credentials for?
An LDAP administrator might choose to configure their LDAP server to not return certain sensitive attributes to unauthenticated searches, so the “credentials” section allows you to set the dn and password to use to authenticate with the LDAP server in that case.
If you could please tell me the LDIF that needs to be created on LDAP server to work with Caldav Server will be very helpful. I am having issues understanding "rdnSchema": {67 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L67> "base": "dc=example,dc=com",68 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L68> "users": "cn=users",69 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L69> "groups": "cn=groups",70 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L70> "locations": "cn=locations",71 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L71> "resources": "cn=resources",72 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L72> "addresses": "cn=addresses",73 <https://trac.calendarserver.org/browser/CalendarServer/trunk/twistedcaldav/stdconfig.py#L73> }, What needs to be created on LDAP server to satisfy above rdnSchema expected by Caldav Server? Best Regards, On Mon, May 25, 2015 at 10:04 AM, Gaurav Jain <monkeyfdude@gmail.com> wrote:
Thank you for the response.
My apologies for asking questions on LDAP.
* So, I assume Calendar Server will use LDAP bind command to authenticate user against LDAP.
My question is which LDAP password will it use to authenticate the user supplied password received at 8008/8443?
Where is the LDAP password located that LDAP bind command will use to login/authenticate incoming user.
Best Regards, Gaurav Jain
On Mon, May 25, 2015 at 9:53 AM, Morgen Sagen <sagen@apple.com> wrote:
On May 25, 2015, at 8:33 AM, Gaurav Jain <monkeyfdude@gmail.com> wrote:
Hi,
I am very new to ldap and I am struggling setting it up for Caldav server.
I am trying to setup ldap sever to work with Caldav Server. I see mapping in stdconfig.py as below.
But the mapping does not specify the user password. Would you be able to tell the mapping b/w ldap password attribute and caldav field
You don’t specify a password attribute in Calendar Server's LDAP configuration — authentication is done via an LDAP bind command.
* What is credentials for?
An LDAP administrator might choose to configure their LDAP server to not return certain sensitive attributes to unauthenticated searches, so the “credentials” section allows you to set the dn and password to use to authenticate with the LDAP server in that case.
participants (2)
-
Gaurav Jain
-
Morgen Sagen