Mac users

Thanks for the info, but I've been trying this without any results. When I search the directory in Address Book it just says "No Matches Found".

How do I know if I should use "mail=email@address.com" or "uid=username"? How can I double check to know what my username is? Is my username case sensitive?

thanks in advance,

Matthew

This doesn't work for me on 10.5.  From Console.app, I get the following:

"4/29/08 11:26:46 AM Address Book[3820] [FreeLDAP.org] Binding to server did not complete successfully: '-1:Can't contact LDAP server'

I've got port 389, SSL, uid username format,...

I'd like to see some screenshots of a configuration that works.

Firstly, this is an awesome service and I thank you for offering it. However, I'm having trouble getting it to work. Specifically:

I've tried multiple different preference settings to get Address Book.app to connect, but can't seem to do so. Explicit details are (also) posted here: http://www.macosxhints.com/comment.php? … ;cid=98726

In addition to the information contained behind the link, I am trying this on both Mac OS X 10.5.2 and Mac OS X 10.4.11. Both versions of Address Book get the same result: can't bind to LDAP server. In each case, regardless of the setting I use for the Address Book's preferences, I am seeing this appear in the Console Messages from Console.app:

4/30/08 Apr 30, 5:48:50 PM Address Book[894] [FreeLDAP.org Tests] Binding to server did not complete successfully: '-1:Can't contact LDAP server'

More specifically, here is what my Address Book LDAP directory preferences for FreeLDAP.org look like:

Name: FreeLDAP.org Tests
Server: ds1.us.freeldap.org
Port: 389
Use SSL: Checked
Allow self-signed certificates: Checked
Search Base: o=entic.net
Scope: Subtree
Authentication Type: Simple
User name: uid=myusername, ou=People, o=entic.net
Password: mypassword

On Mac OS X 10.5.2, Address Book.app's version string reads as:

Version 4.1 (687.1)

Help, please? Thanks in advance!

Last edited by meitar (2008-04-29 23:54:58)

Thanks to Anil for being patient enough to sit through my repeated attempts to ask him what things looked like on the LDAP server's side of things.

In any event, FreeLDAP.org does seem to work reliably for me using Address Book on Mac OS X 10.5.2 as long as I don't use strict SSL. What this means is that, in Mac OS X 10.5 Leopard, the individual directory's LDAP preference sheet includes a "Allow self-signed certificate" checkbox—make absolutely sure this checkbox is checked or any SSL connection to FreeLDAP.org will not work.

Furthermore, it's annoying but true that any changes you make in the directory's LDAP settings sheet require you to completely exit out of Address Book and then relaunch it to take effect. Any searches you perform after changing the settings but before you quit still use the old settings, which is why this was so confusing without the help of debugging tools.

Indeed, SSL is flakey and the ldapsearch utility in Mac OS X 10.4.11 or Mac OS X 10.5.2 seems to behave equally badly! That said, you may not need to use port 389 for LDAP searches to succeed.

Here are the nitty-gritty details from my personal troubleshooting logs regarding how I figured this out:

Deleted and reconfigured the test directory pointing at FreeLDAP.org, like so:

Server: ds1.us.freeldap.org
Port: 389
Use SSL: UNchecked
Search Base: o=entic.net
Scope: Subtree
Authentication: Simple
User name: uid=username, ou=People, o=entic.net
Password: ********

* Search…Little Snitch prompts for access for Address Book to port 389 (LDAP), granted…success!
* Changed Use SSL to CHECKED and Port to 636 ("Allow self-signed certificate" is UNchecked)
* Search…success! Why no Little Snitch request to port 636?
* Quit application, relaunched.
* Search…NOW Little Snitch is prompting for access for Address Book to port 636, granted…failure.
* Changed Port to 389.
* Search…failure.
* Quit application, relaunched.
* Search…failure.
* Changed Use SSL to UNchecked.
* Search…failure.
* Quit application, relaunched.
* Search…success! LDAP search succeeds after SSL is removed, port is reverted to 389, and Address Book.app is quit and relaunched.
* Changed Use SSL to CHECKED, Port to 636, and "Allow self-signed certificate" to CHECKED
* Search…success! Of course, since I bet Address Book did not make any real change to the LDAP connection parameters.
* Quit application, relaunched.
* Search…success! Wait, what?
* UNCHECKED "Allow self-signed certificate"
* Search…success! (Of course…no change.)
* Quit application, relaunched.
* Search…failure. Aha!
* Re-CHECKED "Allow self-signed certificate"
* Search…failure. To be expected at this point.
* Quit application, relaunched.
* Search…success!

In other words, I originally omitted any and all settings that had to do with SSL. This worked without problems. Then, I enabled SSL settings one at a time, each time quitting and re-starting the Address Book application between changes. I finally ended up with a configuration that looked like this on Mac OS X 10.5.2 and Address Book 4.1:

Server: ds1.us.freeldap.org
Port: 636
Use SSL: CHECKED
Allow self-signed certificates: CHECKED
Search Base: o=entic.net
Scope: Subtree
Authentication: Simple
User name: uid=USERNAME, ou=People, o=entic.net
Password: PASSWORD

where USERNAME is the username you signed up at FreeLDAP.org with and PASSWORD is the password your signed up with.

Hope this helps someone down the line.

Cheers,

You have port 389, does that mean SSL is checked but you had to set port 389?

You should use "uid=username, ou=People, o=entic.net" (instead of mail=...) for user name under Logon information. The screen shots we have are out dated, because we don't have Outlook on hand to update them.

If you still have problems send us an email...
feedback@freeldap.org

and your email feedback@freeldap.org doesn't work...

jean

no, it still doesn' t work.

what is your exact config except 636 and SSL checked ?
perhaps it' s because I'm on a french configuration...
sometime there are some language bugs, but i don' t belive in it.