Forum Discussion

adiezma_1656's avatar
adiezma_1656
Icon for Nimbostratus rankNimbostratus
Apr 16, 2012

Problem with the "PROXY LDAP" iRule

Hi!

 

 

 

I have a Problem with the "PROXY LDAP iRule."

 

 

 

In history, we have an LDAP directory, where the user can change their profile at any time.

 

 

 

Works perfectly except When Needs to modify a photograph of a user profile. When That Happens, error says "Can not Connect with LDAP server" and does not change the profile picture.

 

 

 

An LDAP administrator tells me that the only difference Between a change in profile and a change in profile picture, Is That the petition "ldap_modify" is Done with binary data.

 

 

 

Any idea?

 

 

 

 

 

Thanks a lot.

 

 

 

Antonio.

 

application delivery
dev
devops
iRules
  • Hamish's avatar
    Hamish
    Icon for Cirrocumulus rankCirrocumulus
    Apr 17, 2012
    Hmm.. Both ldap messages are going to be encoded. So they're really all 'binary' data... What does a tcpdump of the traffic show?

     

     

    H
  • Hamish's avatar
    Hamish
    Icon for Cirrocumulus rankCirrocumulus
    Apr 17, 2012
    It's possible that the encoding for the length of the message and/or msgid is slightly different when updating the (Larger) photo data... IIRC (Sorry it's been 2 years since I looked at this iRule) the LDAP_PROXY iRule makes some assumptions when decoding certain fields

     

     

     

    H
  • adiezma_1656's avatar
    adiezma_1656
    Icon for Nimbostratus rankNimbostratus
    Apr 19, 2012
    I have capture with wireshark, but I can not send the archive.cap

     

     

    Regards

     

     

    Antonio