Environment
Novell iPrint for Linux
Novell Open Enterprise Server 2 (OES 2) Linux Support Pack 2Situation
How to restrict iPrint authentication to search only in one container.
Setting up secure iPrint authentication to not walk the tree.
Resolution
Follow the steps below to configure Secure iPrint to only search one container:
1. Edit the AuthLDAPDNURL line in /etc/opt/novell/iprint/httpd/conf/iprint_ssl.conf file to match the following example.
Syntax:
AuthLDAPDNURL " ldaps://<IPorDNSofPrintManagerServer>>:636/ou=<myContainer>,o=<myOrganization>??one?(objectClass=user)"
Example:
AuthLDAPDNURL " ldaps://printmgr.abc.com:636/ou=sales,o=abc-org??one?(objectClass=user>)"
Note: The key to this working is the section "??one?". This tells ldap to search only the container specified.