Contextless login with iManager 2.7 doesn't allow a search order and it is not possible to authenticate contextless when there are 2 users in tree with the same cn

  • 7001808
  • 05-Nov-2008
  • 26-Apr-2012

Environment

Novell iManager 2.7
Novell iManager 2.7.1

Situation

Contextless login with iManager 2.7 doesn't allow a search order and it is not possible to authenticate contextless when there are 2 users in tree with the same cn

Setup to duplicate

iManager 2.7 or iManager 2.7.1

1.  Create a user cn=admin,o=novell. (password of novell)  Next create a user of cn=admin,o=suse (password of suse).

2.  Enable contextless login (Configure | iManager Server | Configure iManager | Select the Authentication tab and select Search from ROOT.)

3. Attempt to login with admin and password of novell. Watching dstrace during this authentication, you will see that cn=admin.o=suse is chosen and it is impossible to login as cn=admin,o=novell contextlessly.

You can type in the full context of the user to authenticate, there is no way to specify a search order.

I also tried to change the contextless options from Search from Root, to Search containers and selecting O=suse and o=novell, however it made no difference.

Status

Reported to Engineering

Additional Information

This will be resolved in iManager 2.7.2