View Full Version : LDAP/AD Account Issue
28th July 2010, 01:27 AM
After I upgraded from fc13 to fc14, the lower case ldap/ad account doesn't work. Is there any parameters that we can change to allow lower case accounts?
# uname -r
# id danielc ---- it works on fc13
id: danielc: No such user
# id DanielC
uid=1079(DanielC) gid=2008(Users) groups=2008(Users)
28th July 2010, 02:39 AM
I'm willing to bet this is an older, pre-existing account. All references I can find
to the problem indicate that LDAP (the new one) is doing what it should, but
it used to return matches without regard to case... Most of the reports just have
the entry deleted, and re-created as an all lower case entry.
You can google for ldap+mixed case and get a nice list of complaints about the
issue. You can also read (not much info there though):
28th July 2010, 07:58 PM
My acount is on the windows ad and it's "DanielC". Windows doesn't distinguish with upper/lower cases, however Fedora 14 does. I think something has been changed since f14, though it works on f13.
What's the change?
29th July 2010, 03:12 AM
Following the standard specification perhaps?
29th July 2010, 05:34 AM
I know that LDAP has usually ignored case--I work with it on CentOS, and searching for an entry, for example, is case-insensitive. Whether newer versions of LDAP (CentOS probably has an older version) no longer do this or not, I don't know. IIRC, whether or not case was honored is in one of the schema, but I have no idea where.
Edit: I should add that changing schema can lead to breakage.
29th July 2010, 12:42 PM
I believe that is what the standard says is that case is sensitive.
If applications want to eliminate case then it would be up to the application. UNIX
has always been case sensitive, and that causes major problems when the case
must be respected by the supporting infrastructure. Normally (not always) unix
logins have been lower case simply because it makes typing easier.
I have seen mixed case used for alternate logins - the lower case one was the
"normal" user login, the mixed case was a test login.
29th July 2010, 07:12 PM
I went through those changelogs and didn't find anything related. Any suggestions?
F13: -- case insensitive
F14: -- case sensitive
29th July 2010, 10:27 PM
Again, you could look through the schema of the two versions and see if the caseIgnoreMatch has changed in the various schemas, but aside from that, I really don't know.
30th July 2010, 07:49 PM
I searched "caseIgnoreMatch" and found some files. However it seems that they are not relevent.
30th July 2010, 10:53 PM
No, probably not I really don't know what changed where, I'm afraid.
vBulletin® v3.8.7, Copyright ©2000-2013, vBulletin Solutions, Inc.