  • From: Oliver Koller < >
  • To:
  • Subject: Re: [SOGo] more than one baseDN for users in LDAP
  • Date: Mon, 29 Nov 2010 09:13:53 +0100

Hi Robert

ldapsearch works but the key/string combination not.
I have changed the dc=local to dc=ch

Here my config:

sogod SOGoMailDomain
sogod WONoDetach NO
sogod SOGoLoginModule Contacts
sogod OCSFolderInfoURL
mysql://sogo: :3306/sogo/sogo_folder_info
sogod SOGoUserSources '(
CNFieldName = cn;
IDFieldName = uid;
IMAPHostFieldName = mailHost;
UIDFieldName = uid;
baseDN = "dc=fust,dc=ch";
bindDN = "uid=sogo,ou=daemons,ou=informatik,dc=fust,dc=ch";
bindPassword = XXX;
canAuthenticate = YES;
displayName = "Adressen";
hostname = localhost;
id = public;
isAddressBook = YES;
port = 389;
scope = sub;
type = ldap;
sogod SOGoMemcachedHost localhost
sogod SOGoFoldersSendEMailNotifications NO
sogod SOGoTimeZone Europe/Zurich
sogod SOGoAppointmentSendEMailNotifications NO
sogod SOGoACLsSendEMailNotifications NO
sogod SOGoLanguage German
sogod SOGoProfileURL
mysql://sogo: :3306/sogo/sogo_user_profile

# extended LDIF
# LDAPv3
# base <dc=fust,dc=ch> with scope subtree
# filter: (objectclass=*)
# requesting: ALL

dn: dc=fust,dc=ch
objectClass: top
objectClass: dcObject
objectClass: organization
o: Dipl. Ing. Fust AG
dc: fust
description: LDAP Fust

# admin,
dn: cn=admin,dc=fust,dc=ch
objectClass: organizationalRole
cn: admin
description: LDAP administrator

# informatik,
dn: ou=informatik,dc=fust,dc=ch
objectClass: organizationalUnit
description: Informatik
ou: informatik

# auftragsabwicklung,
dn: ou=auftragsabwicklung,dc=fust,dc=ch
objectClass: organizationalUnit
description: Auftragsabwicklung
ou: auftragsabwicklung

# okoller, informatik,
dn: uid=okoller,ou=informatik,dc=fust,dc=ch
objectClass: inetOrgPerson
description: Mitarbeiter Informatik, Oliver Koller, UNIX/Netzwerk
givenName: Oliver
sn: Koller
cn: Oliver Koller
mail: ... <AT>
uid: okoller
# superuser,
dn: cn=superuser,dc=fust,dc=ch
objectClass: top
objectClass: groupOfNames
cn: superuser
member: uid=okoller,ou=informatik,dc=fust,dc=ch
member: uid=gmueller,ou=auftragsabwicklung,dc=fust,dc=ch

# sschmid, informatik,
dn: uid=sschmid,ou=informatik,dc=fust,dc=ch
objectClass: inetOrgPerson
description: Mitarbeiter Informatik, Silvan Schmid, Windwos-Server
givenName: Silvan
sn: Schmid
cn: Silvan Schmid
mail: ss <AT>
uid: sschmid

# gmueller, auftragsabwicklung,
dn: uid=gmueller,ou=auftragsabwicklung,dc=fust,dc=ch
objectClass: inetOrgPerson
description: Chef Auftragsabwicklung, Guido Mueller
givenName: Guido
sn:: TcO8bGxlcg==
cn:: R3VpZG8gTcO8bGxlcg==
mail: ggg <AT>
uid: gmueller

# anonymous, informatik,
dn: uid=anonymous,ou=informatik,dc=fust,dc=ch
objectClass: inetOrgPerson
description: Anonymer User der alles anzeigen Kann
givenName: Anonymous
sn: Anonymous
cn: Anonymous Anonymous
uid: anonymous

# daemons, informatik,
dn: ou=daemons,ou=informatik,dc=fust,dc=ch
objectClass: organizationalUnit
ou: daemons

# sogo, daemons, informatik,
dn: uid=sogo,ou=daemons,ou=informatik,dc=fust,dc=ch
objectClass: top
objectClass: inetOrgPerson
objectClass: person
objectClass: organizationalPerson
uid: sogo
cn: SOGo Administrator

sn: Administrator
givenName: SOGo

# people,
dn: ou=people,dc=fust,dc=ch
objectClass: organizationalUnit
ou: people

# ncamara, auftragsabwicklung,
dn: uid=ncamara,ou=auftragsabwicklung,dc=fust,dc=ch
objectClass: inetOrgPerson
description: Mitarbeiterin Auftragsabwicklung, Nadia Camara, Buero 8
givenName: Nadia
sn: Camara
cn: Nadia Camara

uid: ncamara

# search result
search: 2
result: 0 Success

# numResponses: 14
# numEntries: 13
Is that ok or need you the "cn=config"?

Thank you

Am 26.11.2010 20:36, schrieb Robert Weilhammer:
Hi Oliver,

can you query your OpenLDAP, if you sepicify dc=fust,dc=local as base ?

# ldapsearch -x -b "dc=Fust,dc=local" -h $ldapserver

did you specified a scope for your query ?

you should use "sub", if you use dc=fust,dc=local as basedn


your ldap-config andn sogo ldap-config would be really helpful to debug more

Kind regards,

Am 26.11.2010 um 17:03 schrieb Oliver Koller:

I have alredy tried this, does not work.

Am 26.11.2010 16:51, schrieb

Are you using Active Directory ?
Try to have this configuration in your config file :


Best regards,



