diff options
| author | Thomas Fitzsimmons | 2015-04-22 22:07:17 -0400 |
|---|---|---|
| committer | Thomas Fitzsimmons | 2015-04-22 22:17:56 -0400 |
| commit | 557c7d6fc6a6520a7ca92d2d006299fae0978aa3 (patch) | |
| tree | 1d5102082a508576c5420c9ca72da09617ee7b4b /doc/misc | |
| parent | 7128b0de899111c97749e3b7cddfb2935a7f0a9a (diff) | |
| download | emacs-557c7d6fc6a6520a7ca92d2d006299fae0978aa3.tar.gz emacs-557c7d6fc6a6520a7ca92d2d006299fae0978aa3.zip | |
Improve EUDC manual
* eudc.texi (Troubleshooting): New LDAP troubleshooting subsection.
Diffstat (limited to 'doc/misc')
| -rw-r--r-- | doc/misc/eudc.texi | 32 |
1 files changed, 25 insertions, 7 deletions
diff --git a/doc/misc/eudc.texi b/doc/misc/eudc.texi index 4d6e6addc35..064f5705777 100644 --- a/doc/misc/eudc.texi +++ b/doc/misc/eudc.texi | |||
| @@ -248,7 +248,7 @@ Pass any required extra options to @command{ldapsearch} using | |||
| 248 | @end itemize | 248 | @end itemize |
| 249 | 249 | ||
| 250 | The following examples use a base of | 250 | The following examples use a base of |
| 251 | @code{ou=people,dc=example,dc=com} and the host name | 251 | @code{ou=people,dc=gnu,dc=org} and the host name |
| 252 | @code{ldap.gnu.org}, a server that supports LDAP-over-SSL (the | 252 | @code{ldap.gnu.org}, a server that supports LDAP-over-SSL (the |
| 253 | @code{ldaps} protocol, with default port @code{636}) and which | 253 | @code{ldaps} protocol, with default port @code{636}) and which |
| 254 | requires authentication by the user @code{emacsuser} with password | 254 | requires authentication by the user @code{emacsuser} with password |
| @@ -274,6 +274,7 @@ the wildcard character to the end of the last word. | |||
| 274 | @menu | 274 | @menu |
| 275 | * Emacs-only Configuration:: Configure with @file{.emacs} | 275 | * Emacs-only Configuration:: Configure with @file{.emacs} |
| 276 | * External Configuration:: Configure with @file{/etc/openldap/ldap.conf} | 276 | * External Configuration:: Configure with @file{/etc/openldap/ldap.conf} |
| 277 | * Troubleshooting:: Debug @command{ldapsearch} failures | ||
| 277 | @end menu | 278 | @end menu |
| 278 | 279 | ||
| 279 | @node Emacs-only Configuration | 280 | @node Emacs-only Configuration |
| @@ -305,8 +306,8 @@ LDAP: | |||
| 305 | ("ldaps://ldap.gnu.org" . ldap))) | 306 | ("ldaps://ldap.gnu.org" . ldap))) |
| 306 | (customize-set-variable 'ldap-host-parameters-alist | 307 | (customize-set-variable 'ldap-host-parameters-alist |
| 307 | '(("ldaps://ldap.gnu.org" | 308 | '(("ldaps://ldap.gnu.org" |
| 308 | base "ou=people,dc=example,dc=com" | 309 | base "ou=people,dc=gnu,dc=org" |
| 309 | binddn "example\\emacsuser" | 310 | binddn "gnu\\emacsuser" |
| 310 | passwd ldap-password-read))) | 311 | passwd ldap-password-read))) |
| 311 | @end lisp | 312 | @end lisp |
| 312 | 313 | ||
| @@ -330,7 +331,7 @@ Your system may already be configured for a default LDAP server. For | |||
| 330 | example, @file{/etc/openldap/ldap.conf} might contain: | 331 | example, @file{/etc/openldap/ldap.conf} might contain: |
| 331 | 332 | ||
| 332 | @example | 333 | @example |
| 333 | BASE ou=people,dc=example,dc=com | 334 | BASE ou=people,dc=gnu,dc=org |
| 334 | URI ldaps://ldap.gnu.org | 335 | URI ldaps://ldap.gnu.org |
| 335 | TLS_CACERTDIR /etc/openldap/certs | 336 | TLS_CACERTDIR /etc/openldap/certs |
| 336 | @end example | 337 | @end example |
| @@ -339,11 +340,11 @@ TLS_CACERTDIR /etc/openldap/certs | |||
| 339 | @cindex binddn | 340 | @cindex binddn |
| 340 | Authentication requires a password, and a @dfn{bind distinguished name | 341 | Authentication requires a password, and a @dfn{bind distinguished name |
| 341 | (binddn)} representing the user, in this case, | 342 | (binddn)} representing the user, in this case, |
| 342 | @code{example\emacsuser}. These can be specified in | 343 | @code{gnu\emacsuser}. These can be specified in |
| 343 | @file{~/.authinfo.gpg} with the following line: | 344 | @file{~/.authinfo.gpg} with the following line: |
| 344 | 345 | ||
| 345 | @example | 346 | @example |
| 346 | machine ldaps://ldap.gnu.org binddn example\emacsuser password s3cr3t | 347 | machine ldaps://ldap.gnu.org binddn gnu\emacsuser password s3cr3t |
| 347 | @end example | 348 | @end example |
| 348 | 349 | ||
| 349 | Then in the @file{.emacs} init file, these expressions suffice to | 350 | Then in the @file{.emacs} init file, these expressions suffice to |
| @@ -372,7 +373,7 @@ case @command{ldapsearch} defaults to the host name in | |||
| 372 | The @file{~/.authinfo.gpg} line becomes: | 373 | The @file{~/.authinfo.gpg} line becomes: |
| 373 | 374 | ||
| 374 | @example | 375 | @example |
| 375 | binddn example\emacsuser password s3cr3t | 376 | binddn gnu\emacsuser password s3cr3t |
| 376 | @end example | 377 | @end example |
| 377 | 378 | ||
| 378 | @noindent | 379 | @noindent |
| @@ -391,6 +392,23 @@ and the @file{.emacs} expressions become: | |||
| 391 | '(("" auth-source t))) | 392 | '(("" auth-source t))) |
| 392 | @end lisp | 393 | @end lisp |
| 393 | 394 | ||
| 395 | @node Troubleshooting | ||
| 396 | @subsection Troubleshooting | ||
| 397 | |||
| 398 | If @command{ldapsearch} exits with an error, you'll see a message like | ||
| 399 | this in the @code{*Messages*} buffer (all on one line): | ||
| 400 | |||
| 401 | @example | ||
| 402 | ldap-search-internal: Failed ldapsearch invocation: | ||
| 403 | ldapsearch "-Hldaps://ldap.gnu.org" "-bou=people,dc=gnu,dc=org" | ||
| 404 | "-Dgnu\emacsuser" "-W" "-LL" "-tt" "(&(mail=name*))" | ||
| 405 | "givenname" "sn" "mail" | ||
| 406 | @end example | ||
| 407 | |||
| 408 | The @command{ldapsearch} command is formatted such that it can be | ||
| 409 | copied and pasted into a terminal. Set the @command{ldapsearch} debug | ||
| 410 | level to 5 by appending @code{-d 5} to the command line. | ||
| 411 | |||
| 394 | @node Usage | 412 | @node Usage |
| 395 | @chapter Usage | 413 | @chapter Usage |
| 396 | 414 | ||