Home › Forums › OS X Server and Client Discussion › Open Directory › Error when creating user in Workgroup Manager (object class ‘inetOrgPerson’ requires attribute ‘sn’)
- This topic has 6 replies, 2 voices, and was last updated 15 years, 1 month ago by
morphic.
-
AuthorPosts
-
February 21, 2010 at 11:28 pm #378034morphicParticipant
I’m trying to centralize authentication for my home using OpenLDAP – the next step will be to mount the home-directories using Netatalk/AFP. I’ve been at this for a couple weeks now, and have probably read every how-to guide out on the internet. I already have it so I can log in as an LDAP-based user, but get errors when trying to create a new user using Workgroup Manager
Following is a packet-level trace of me using Workgroup Manager (10.5.5) to connect to a new OpenLDAP-based directory. I only do two things: 1) authenticating to my LDAP server and 2) trying to create a new user.
To keep it a short as possible, I’ve only included the LDAP packets and only expanded the LDAP-based data. Note the error message at the very end: object class ‘inetOrgPerson’ requires attribute ‘sn’. It looks like Workgroup Manager isn’t setting *any* of the required fields…
Any ideas?
Thanks!
[code]
No. Time Source Destination Protocol Info
1 0.000000 10.0.4.5 10.0.4.11 LDAP searchRequest(47) “cn=users, dc=example,dc=net” wholeSubtreeFrame 1 (330 bytes on wire, 330 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49199 (49199), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 264
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(47) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 47
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: or (1)
or: (uid=diradmin)
or: 1 item
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: or (1)
or: (cn=diradmin)
or: 1 item
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 4 items
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
[Response In: 2]No. Time Source Destination Protocol Info
2 0.009915 10.0.4.11 10.0.4.5 LDAP searchResEntry(47) “uid=diradmin,cn=users,dc=example,dc=net”Frame 2 (171 bytes on wire, 171 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 1, Ack: 265, Len: 101
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(47) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 47
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 2 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
[Response To: 1]
[Time: 0.009915000 seconds]No. Time Source Destination Protocol Info
4 0.010290 10.0.4.11 10.0.4.5 LDAP searchResDone(47) success [1 result]Frame 4 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 102, Ack: 265, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(47) success [1 result]
messageID: 47
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 1]
[Time: 0.010290000 seconds]No. Time Source Destination Protocol Info
6 0.010492 10.0.4.5 10.0.4.11 LDAP abandonRequest(47)Frame 6 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49199 (49199), Dst Port: ldap (389), Seq: 265, Ack: 116, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 48
protocolOp: abandonRequest (16) abandonRequest(47)
abandonRequest: 47No. Time Source Destination Protocol Info
7 0.011398 10.0.4.5 10.0.4.11 LDAP searchRequest(49) “cn=users, dc=example,dc=net” wholeSubtreeFrame 7 (322 bytes on wire, 322 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49199 (49199), Dst Port: ldap (389), Seq: 273, Ack: 116, Len: 256
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(49) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 49
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 120
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 1 item
AttributeDescription: authAuthority
[Response In: 9]No. Time Source Destination Protocol Info
9 0.020067 10.0.4.11 10.0.4.5 LDAP searchResEntry(49) “uid=diradmin,cn=users,dc=example,dc=net”Frame 9 (147 bytes on wire, 147 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 116, Ack: 529, Len: 77
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(49) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 49
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 1 item
PartialAttributeList item authAuthority
type: authAuthority
vals: 1 item
;basic;
[Response To: 7]
[Time: 0.008669000 seconds]No. Time Source Destination Protocol Info
11 0.020467 10.0.4.11 10.0.4.5 LDAP searchResDone(49) success [1 result]Frame 11 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 193, Ack: 529, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(49) success [1 result]
messageID: 49
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 7]
[Time: 0.009069000 seconds]No. Time Source Destination Protocol Info
13 0.020834 10.0.4.5 10.0.4.11 LDAP searchRequest(50) “cn=users, dc=example,dc=net” wholeSubtreeFrame 13 (307 bytes on wire, 307 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49199 (49199), Dst Port: ldap (389), Seq: 529, Ack: 207, Len: 241
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(50) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 50
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 120
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 0 items
[Response In: 14]No. Time Source Destination Protocol Info
14 0.033838 10.0.4.11 10.0.4.5 LDAP searchResEntry(50) “uid=diradmin,cn=users,dc=example,dc=net”Frame 14 (548 bytes on wire, 548 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 207, Ack: 770, Len: 478
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(50) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 50
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 12 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item objectClass
type: objectClass
vals: 8 items
inetOrgPerson
posixAccount
shadowAccount
apple-user
extensibleObject
organizationalPerson
top
person
PartialAttributeList item sn
type: sn
vals: 1 item
Diradmin
PartialAttributeList item givenName
type: givenName
vals: 1 item
Diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
PartialAttributeList item displayName
type: displayName
vals: 1 item
Directory Administrator
PartialAttributeList item loginShell
type: loginShell
vals: 1 item
/bin/bash
PartialAttributeList item uidNumber
type: uidNumber
vals: 1 item
1000
PartialAttributeList item authAuthority
type: authAuthority
vals: 1 item
;basic;
PartialAttributeList item userPassword
type: userPassword
vals: 1 item
secret
PartialAttributeList item homeDirectory
type: homeDirectory
vals: 1 item
/NetUsers/diradmin
PartialAttributeList item gidNumber
type: gidNumber
vals: 1 item
80
[Response To: 13]
[Time: 0.013004000 seconds]No. Time Source Destination Protocol Info
16 0.034700 10.0.4.11 10.0.4.5 LDAP searchResDone(50) success [1 result]Frame 16 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 685, Ack: 770, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(50) success [1 result]
messageID: 50
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 13]
[Time: 0.013866000 seconds]No. Time Source Destination Protocol Info
21 0.035541 10.0.4.5 10.0.4.11 LDAP searchRequest(1) “” baseObject Frame 21 (168 bytes on wire, 168 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49203 (49203), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 102
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(1) “” baseObject
messageID: 1
protocolOp: searchRequest (3)
searchRequest
baseObject:
scope: baseObject (0)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 5
typesOnly: False
Filter: (objectclass=*)
filter: present (7)
present: objectclass
attributes: 4 items
AttributeDescription: supportedSASLMechanisms
AttributeDescription: namingContexts
AttributeDescription: dnsHostName
AttributeDescription: krbName
[Response In: 23]No. Time Source Destination Protocol Info
23 0.038775 10.0.4.11 10.0.4.5 LDAP searchResEntry(1) “” Frame 23 (170 bytes on wire, 170 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49203 (49203), Seq: 1, Ack: 103, Len: 100
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(1) “” [1 result]
messageID: 1
protocolOp: searchResEntry (4)
searchResEntry
objectName:
attributes: 2 items
PartialAttributeList item namingContexts
type: namingContexts
vals: 1 item
dc=example,dc=net
PartialAttributeList item supportedSASLMechanisms
type: supportedSASLMechanisms
vals: 2 items
DIGEST-MD5
CRAM-MD5
[Response To: 21]
[Time: 0.003234000 seconds]No. Time Source Destination Protocol Info
25 0.039198 10.0.4.11 10.0.4.5 LDAP searchResDone(1) success [1 result]Frame 25 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49203 (49203), Seq: 101, Ack: 103, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(1) success [1 result]
messageID: 1
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 21]
[Time: 0.003657000 seconds]No. Time Source Destination Protocol Info
27 0.039815 10.0.4.5 10.0.4.11 LDAP bindRequest(2) “” sasl Frame 27 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49203 (49203), Dst Port: ldap (389), Seq: 103, Ack: 115, Len: 24
Lightweight-Directory-Access-Protocol
LDAPMessage bindRequest(2) “” sasl
messageID: 2
protocolOp: bindRequest (0)
bindRequest
version: 3
name:
authentication: sasl (3)
sasl
mechanism: CRAM-MD5
[Response In: 29]No. Time Source Destination Protocol Info
29 0.040752 10.0.4.11 10.0.4.5 LDAP bindResponse(2) saslBindInProgress (SASL(0): successful result: )Frame 29 (139 bytes on wire, 139 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49203 (49203), Seq: 115, Ack: 127, Len: 69
Lightweight-Directory-Access-Protocol
LDAPMessage bindResponse(2) saslBindInProgress (SASL(0): successful result: )
messageID: 2
protocolOp: bindResponse (1)
bindResponse
resultCode: saslBindInProgress (14)
matchedDN:
errorMessage: SASL(0): successful result:
serverSaslCreds: 3C3234343334373136322E38353030383533407469676572…
[Response To: 27]
[Time: 0.000937000 seconds]No. Time Source Destination Protocol Info
31 0.040921 10.0.4.5 10.0.4.11 LDAP bindRequest(3) “” sasl Frame 31 (133 bytes on wire, 133 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49203 (49203), Dst Port: ldap (389), Seq: 127, Ack: 184, Len: 67
Lightweight-Directory-Access-Protocol
LDAPMessage bindRequest(3) “” sasl
messageID: 3
protocolOp: bindRequest (0)
bindRequest
version: 3
name:
authentication: sasl (3)
sasl
mechanism: CRAM-MD5
credentials: 64697261646D696E20393434396565623032663032643761…
GSS-API Generic Security Service Application Program Interface
Unknown header (class=1, pc=1, tag=4)
[Response In: 32]No. Time Source Destination Protocol Info
32 0.044730 10.0.4.11 10.0.4.5 LDAP bindResponse(3) successFrame 32 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49203 (49203), Seq: 184, Ack: 194, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage bindResponse(3) success
messageID: 3
protocolOp: bindResponse (1)
bindResponse
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 31]
[Time: 0.003809000 seconds]No. Time Source Destination Protocol Info
34 0.044875 10.0.4.5 10.0.4.11 LDAP unbindRequest(4)Frame 34 (73 bytes on wire, 73 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49203 (49203), Dst Port: ldap (389), Seq: 194, Ack: 198, Len: 7
Lightweight-Directory-Access-Protocol
LDAPMessage unbindRequest(4)
messageID: 4
protocolOp: unbindRequest (2)
unbindRequestNo. Time Source Destination Protocol Info
41 0.045692 10.0.4.5 10.0.4.11 LDAP searchRequest(1) “” baseObject Frame 41 (168 bytes on wire, 168 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 102
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(1) “” baseObject
messageID: 1
protocolOp: searchRequest (3)
searchRequest
baseObject:
scope: baseObject (0)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 5
typesOnly: False
Filter: (objectclass=*)
filter: present (7)
present: objectclass
attributes: 4 items
AttributeDescription: supportedSASLMechanisms
AttributeDescription: namingContexts
AttributeDescription: dnsHostName
AttributeDescription: krbName
[Response In: 45]No. Time Source Destination Protocol Info
45 0.049831 10.0.4.11 10.0.4.5 LDAP searchResEntry(1) “” Frame 45 (170 bytes on wire, 170 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 1, Ack: 103, Len: 100
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(1) “” [1 result]
messageID: 1
protocolOp: searchResEntry (4)
searchResEntry
objectName:
attributes: 2 items
PartialAttributeList item namingContexts
type: namingContexts
vals: 1 item
dc=example,dc=net
PartialAttributeList item supportedSASLMechanisms
type: supportedSASLMechanisms
vals: 2 items
DIGEST-MD5
CRAM-MD5
[Response To: 41]
[Time: 0.004139000 seconds]No. Time Source Destination Protocol Info
47 0.050214 10.0.4.11 10.0.4.5 LDAP searchResDone(1) success [1 result]Frame 47 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 101, Ack: 103, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(1) success [1 result]
messageID: 1
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 41]
[Time: 0.004522000 seconds]No. Time Source Destination Protocol Info
49 0.051023 10.0.4.5 10.0.4.11 LDAP bindRequest(2) “” sasl Frame 49 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 103, Ack: 115, Len: 24
Lightweight-Directory-Access-Protocol
LDAPMessage bindRequest(2) “” sasl
messageID: 2
protocolOp: bindRequest (0)
bindRequest
version: 3
name:
authentication: sasl (3)
sasl
mechanism: CRAM-MD5
[Response In: 51]No. Time Source Destination Protocol Info
51 0.051919 10.0.4.11 10.0.4.5 LDAP bindResponse(2) saslBindInProgress (SASL(0): successful result: )Frame 51 (140 bytes on wire, 140 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 115, Ack: 127, Len: 70
Lightweight-Directory-Access-Protocol
LDAPMessage bindResponse(2) saslBindInProgress (SASL(0): successful result: )
messageID: 2
protocolOp: bindResponse (1)
bindResponse
resultCode: saslBindInProgress (14)
matchedDN:
errorMessage: SASL(0): successful result:
serverSaslCreds: 3C313230363034313037322E383530303835334074696765…
[Response To: 49]
[Time: 0.000896000 seconds]No. Time Source Destination Protocol Info
53 0.052091 10.0.4.5 10.0.4.11 LDAP bindRequest(3) “” sasl Frame 53 (133 bytes on wire, 133 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 127, Ack: 185, Len: 67
Lightweight-Directory-Access-Protocol
LDAPMessage bindRequest(3) “” sasl
messageID: 3
protocolOp: bindRequest (0)
bindRequest
version: 3
name:
authentication: sasl (3)
sasl
mechanism: CRAM-MD5
credentials: 64697261646D696E20616161643761393763303638613032…
GSS-API Generic Security Service Application Program Interface
Unknown header (class=1, pc=1, tag=4)
[Response In: 54]No. Time Source Destination Protocol Info
54 0.055927 10.0.4.11 10.0.4.5 LDAP bindResponse(3) successFrame 54 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 185, Ack: 194, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage bindResponse(3) success
messageID: 3
protocolOp: bindResponse (1)
bindResponse
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 53]
[Time: 0.003836000 seconds]No. Time Source Destination Protocol Info
56 0.059245 10.0.4.5 10.0.4.11 LDAP searchRequest(251) “cn=users, dc=example,dc=net” wholeSubtreeFrame 56 (347 bytes on wire, 347 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 281
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(251) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 251
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: or (1)
or: (uid=diradmin)
or: 1 item
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: or (1)
or: (cn=diradmin)
or: 1 item
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 3 items
AttributeDescription: apple-user-adminlimits
AttributeDescription: uid
AttributeDescription: cn
[Response In: 57]No. Time Source Destination Protocol Info
57 0.068570 10.0.4.11 10.0.4.5 LDAP searchResEntry(251) “uid=diradmin,cn=users,dc=example,dc=net”Frame 57 (172 bytes on wire, 172 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49195 (49195), Seq: 1, Ack: 282, Len: 102
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(251) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 251
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 2 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
[Response To: 56]
[Time: 0.009325000 seconds]No. Time Source Destination Protocol Info
59 0.068947 10.0.4.11 10.0.4.5 LDAP searchResDone(251) success [1 result]Frame 59 (85 bytes on wire, 85 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49195 (49195), Seq: 103, Ack: 282, Len: 15
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(251) success [1 result]
messageID: 251
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 56]
[Time: 0.009702000 seconds]No. Time Source Destination Protocol Info
60 0.068974 10.0.4.5 10.0.4.11 LDAP abandonRequest(251)Frame 60 (76 bytes on wire, 76 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 282, Ack: 103, Len: 10
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 252
protocolOp: abandonRequest (16) abandonRequest(251)
abandonRequest: 251No. Time Source Destination Protocol Info
63 0.554486 10.0.4.5 10.0.4.11 LDAP searchRequest(4) “cn=users, dc=example,dc=net” wholeSubtreeFrame 63 (330 bytes on wire, 330 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 194, Ack: 199, Len: 264
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(4) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 4
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: or (1)
or: (uid=diradmin)
or: 1 item
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: or (1)
or: (cn=diradmin)
or: 1 item
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 4 items
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
[Response In: 64]No. Time Source Destination Protocol Info
64 0.563787 10.0.4.11 10.0.4.5 LDAP searchResEntry(4) “uid=diradmin,cn=users,dc=example,dc=net”Frame 64 (171 bytes on wire, 171 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 199, Ack: 458, Len: 101
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(4) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 4
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 2 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
[Response To: 63]
[Time: 0.009301000 seconds]No. Time Source Destination Protocol Info
66 0.564141 10.0.4.11 10.0.4.5 LDAP searchResDone(4) success [1 result]Frame 66 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 300, Ack: 458, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(4) success [1 result]
messageID: 4
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 63]
[Time: 0.009655000 seconds]No. Time Source Destination Protocol Info
68 0.564281 10.0.4.5 10.0.4.11 LDAP abandonRequest(4)Frame 68 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 458, Ack: 314, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 5
protocolOp: abandonRequest (16) abandonRequest(4)
abandonRequest: 4No. Time Source Destination Protocol Info
69 0.575675 10.0.4.5 10.0.4.11 LDAP searchRequest(6) “cn=presets_users, dc=example,dc=net” wholeSubtreeFrame 69 (169 bytes on wire, 169 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 466, Ack: 314, Len: 103
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(6) “cn=presets_users, dc=example,dc=net” wholeSubtree
messageID: 6
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=presets_users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (objectclass=apple-preset-user)
filter: and (0)
and: (objectclass=apple-preset-user)
and: 1 item
Filter: (objectclass=apple-preset-user)
and item: or (1)
or: (objectclass=apple-preset-user)
or: 1 item
Filter: (objectclass=apple-preset-user)
or item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-preset-user
attributes: 1 item
AttributeDescription: uid
[Response In: 71]No. Time Source Destination Protocol Info
71 0.578356 10.0.4.11 10.0.4.5 LDAP searchResDone(6) success [0 results]Frame 71 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 314, Ack: 569, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(6) success [0 results]
messageID: 6
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 69]
[Time: 0.002681000 seconds]No. Time Source Destination Protocol Info
73 0.578559 10.0.4.5 10.0.4.11 LDAP abandonRequest(6)Frame 73 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 569, Ack: 328, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 7
protocolOp: abandonRequest (16) abandonRequest(6)
abandonRequest: 6No. Time Source Destination Protocol Info
75 0.672258 10.0.4.5 10.0.4.11 LDAP searchRequest(8) “cn=presets_users, dc=example,dc=net” wholeSubtreeFrame 75 (169 bytes on wire, 169 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 577, Ack: 328, Len: 103
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(8) “cn=presets_users, dc=example,dc=net” wholeSubtree
messageID: 8
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=presets_users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (objectclass=apple-preset-user)
filter: and (0)
and: (objectclass=apple-preset-user)
and: 1 item
Filter: (objectclass=apple-preset-user)
and item: or (1)
or: (objectclass=apple-preset-user)
or: 1 item
Filter: (objectclass=apple-preset-user)
or item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-preset-user
attributes: 1 item
AttributeDescription: uid
[Response In: 76]No. Time Source Destination Protocol Info
76 0.674821 10.0.4.11 10.0.4.5 LDAP searchResDone(8) success [0 results]Frame 76 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 328, Ack: 680, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(8) success [0 results]
messageID: 8
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 75]
[Time: 0.002563000 seconds]No. Time Source Destination Protocol Info
78 0.674992 10.0.4.5 10.0.4.11 LDAP abandonRequest(8)Frame 78 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 680, Ack: 342, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 9
protocolOp: abandonRequest (16) abandonRequest(8)
abandonRequest: 8No. Time Source Destination Protocol Info
79 0.725107 10.0.4.5 10.0.4.11 LDAP searchRequest(10) “cn=users, dc=example,dc=net” wholeSubtreeFrame 79 (577 bytes on wire, 577 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 688, Ack: 342, Len: 511
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(10) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 10
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
atFebruary 22, 2010 at 2:32 pm #378040morphicParticipant😳
[size=18]
Despite having hit “Preview” before submitting my last post and seeing everything correctly, it seems that half of the text was truncated, which also removed the closing “[\code]” tag, which prevents the text from being formatted correctly.I’m going to submit the entire trace again, in 3 separate posts, so as to avoid that problem again
Thanks!
[/size]February 22, 2010 at 2:40 pm #378041morphicParticipant[b]This is part 1 of 3 of my packet-level LDAP trace (see post #1 for details):[/b]
[code]
No. Time Source Destination Protocol Info
1 0.000000 10.0.4.5 10.0.4.11 LDAP searchRequest(47) “cn=users, dc=example,dc=net” wholeSubtreeFrame 1 (330 bytes on wire, 330 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49199 (49199), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 264
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(47) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 47
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: or (1)
or: (uid=diradmin)
or: 1 item
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: or (1)
or: (cn=diradmin)
or: 1 item
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 4 items
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
[Response In: 2]No. Time Source Destination Protocol Info
2 0.009915 10.0.4.11 10.0.4.5 LDAP searchResEntry(47) “uid=diradmin,cn=users,dc=example,dc=net”Frame 2 (171 bytes on wire, 171 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 1, Ack: 265, Len: 101
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(47) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 47
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 2 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
[Response To: 1]
[Time: 0.009915000 seconds]No. Time Source Destination Protocol Info
4 0.010290 10.0.4.11 10.0.4.5 LDAP searchResDone(47) success [1 result]Frame 4 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 102, Ack: 265, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(47) success [1 result]
messageID: 47
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 1]
[Time: 0.010290000 seconds]No. Time Source Destination Protocol Info
6 0.010492 10.0.4.5 10.0.4.11 LDAP abandonRequest(47)Frame 6 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49199 (49199), Dst Port: ldap (389), Seq: 265, Ack: 116, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 48
protocolOp: abandonRequest (16) abandonRequest(47)
abandonRequest: 47No. Time Source Destination Protocol Info
7 0.011398 10.0.4.5 10.0.4.11 LDAP searchRequest(49) “cn=users, dc=example,dc=net” wholeSubtreeFrame 7 (322 bytes on wire, 322 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49199 (49199), Dst Port: ldap (389), Seq: 273, Ack: 116, Len: 256
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(49) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 49
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 120
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 1 item
AttributeDescription: authAuthority
[Response In: 9]No. Time Source Destination Protocol Info
9 0.020067 10.0.4.11 10.0.4.5 LDAP searchResEntry(49) “uid=diradmin,cn=users,dc=example,dc=net”Frame 9 (147 bytes on wire, 147 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 116, Ack: 529, Len: 77
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(49) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 49
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 1 item
PartialAttributeList item authAuthority
type: authAuthority
vals: 1 item
;basic;
[Response To: 7]
[Time: 0.008669000 seconds]No. Time Source Destination Protocol Info
11 0.020467 10.0.4.11 10.0.4.5 LDAP searchResDone(49) success [1 result]Frame 11 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 193, Ack: 529, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(49) success [1 result]
messageID: 49
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 7]
[Time: 0.009069000 seconds]No. Time Source Destination Protocol Info
13 0.020834 10.0.4.5 10.0.4.11 LDAP searchRequest(50) “cn=users, dc=example,dc=net” wholeSubtreeFrame 13 (307 bytes on wire, 307 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49199 (49199), Dst Port: ldap (389), Seq: 529, Ack: 207, Len: 241
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(50) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 50
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 120
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 0 items
[Response In: 14]No. Time Source Destination Protocol Info
14 0.033838 10.0.4.11 10.0.4.5 LDAP searchResEntry(50) “uid=diradmin,cn=users,dc=example,dc=net”Frame 14 (548 bytes on wire, 548 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 207, Ack: 770, Len: 478
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(50) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 50
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 12 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item objectClass
type: objectClass
vals: 8 items
inetOrgPerson
posixAccount
shadowAccount
apple-user
extensibleObject
organizationalPerson
top
person
PartialAttributeList item sn
type: sn
vals: 1 item
Diradmin
PartialAttributeList item givenName
type: givenName
vals: 1 item
Diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
PartialAttributeList item displayName
type: displayName
vals: 1 item
Directory Administrator
PartialAttributeList item loginShell
type: loginShell
vals: 1 item
/bin/bash
PartialAttributeList item uidNumber
type: uidNumber
vals: 1 item
1000
PartialAttributeList item authAuthority
type: authAuthority
vals: 1 item
;basic;
PartialAttributeList item userPassword
type: userPassword
vals: 1 item
secret
PartialAttributeList item homeDirectory
type: homeDirectory
vals: 1 item
/NetUsers/diradmin
PartialAttributeList item gidNumber
type: gidNumber
vals: 1 item
80
[Response To: 13]
[Time: 0.013004000 seconds]No. Time Source Destination Protocol Info
16 0.034700 10.0.4.11 10.0.4.5 LDAP searchResDone(50) success [1 result]Frame 16 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49199 (49199), Seq: 685, Ack: 770, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(50) success [1 result]
messageID: 50
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 13]
[Time: 0.013866000 seconds]No. Time Source Destination Protocol Info
21 0.035541 10.0.4.5 10.0.4.11 LDAP searchRequest(1) “” baseObject Frame 21 (168 bytes on wire, 168 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49203 (49203), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 102
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(1) “” baseObject
messageID: 1
protocolOp: searchRequest (3)
searchRequest
baseObject:
scope: baseObject (0)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 5
typesOnly: False
Filter: (objectclass=*)
filter: present (7)
present: objectclass
attributes: 4 items
AttributeDescription: supportedSASLMechanisms
AttributeDescription: namingContexts
AttributeDescription: dnsHostName
AttributeDescription: krbName
[Response In: 23]No. Time Source Destination Protocol Info
23 0.038775 10.0.4.11 10.0.4.5 LDAP searchResEntry(1) “” Frame 23 (170 bytes on wire, 170 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49203 (49203), Seq: 1, Ack: 103, Len: 100
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(1) “” [1 result]
messageID: 1
protocolOp: searchResEntry (4)
searchResEntry
objectName:
attributes: 2 items
PartialAttributeList item namingContexts
type: namingContexts
vals: 1 item
dc=example,dc=net
PartialAttributeList item supportedSASLMechanisms
type: supportedSASLMechanisms
vals: 2 items
DIGEST-MD5
CRAM-MD5
[Response To: 21]
[Time: 0.003234000 seconds]No. Time Source Destination Protocol Info
25 0.039198 10.0.4.11 10.0.4.5 LDAP searchResDone(1) success [1 result]Frame 25 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49203 (49203), Seq: 101, Ack: 103, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(1) success [1 result]
messageID: 1
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 21]
[Time: 0.003657000 seconds]No. Time Source Destination Protocol Info
27 0.039815 10.0.4.5 10.0.4.11 LDAP bindRequest(2) “” sasl Frame 27 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49203 (49203), Dst Port: ldap (389), Seq: 103, Ack: 115, Len: 24
Lightweight-Directory-Access-Protocol
LDAPMessage bindRequest(2) “” sasl
messageID: 2
protocolOp: bindRequest (0)
bindRequest
version: 3
name:
authentication: sasl (3)
sasl
mechanism: CRAM-MD5
[Response In: 29]No. Time Source Destination Protocol Info
29 0.040752 10.0.4.11 10.0.4.5 LDAP bindResponse(2) saslBindInProgress (SASL(0): successful result: )Frame 29 (139 bytes on wire, 139 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49203 (49203), Seq: 115, Ack: 127, Len: 69
Lightweight-Directory-Access-Protocol
LDAPMessage bindResponse(2) saslBindInProgress (SASL(0): successful result: )
messageID: 2
protocolOp: bindResponse (1)
bindResponse
resultCode: saslBindInProgress (14)
matchedDN:
errorMessage: SASL(0): successful result:
serverSaslCreds: 3C3234343334373136322E38353030383533407469676572…
[Response To: 27]
[Time: 0.000937000 seconds]No. Time Source Destination Protocol Info
31 0.040921 10.0.4.5 10.0.4.11 LDAP bindRequest(3) “” sasl Frame 31 (133 bytes on wire, 133 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49203 (49203), Dst Port: ldap (389), Seq: 127, Ack: 184, Len: 67
Lightweight-Directory-Access-Protocol
LDAPMessage bindRequest(3) “” sasl
messageID: 3
protocolOp: bindRequest (0)
bindRequest
version: 3
name:
authentication: sasl (3)
sasl
mechanism: CRAM-MD5
credentials: 64697261646D696E20393434396565623032663032643761…
GSS-API Generic Security Service Application Program Interface
Unknown header (class=1, pc=1, tag=4)
[Response In: 32]No. Time Source Destination Protocol Info
32 0.044730 10.0.4.11 10.0.4.5 LDAP bindResponse(3) successFrame 32 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49203 (49203), Seq: 184, Ack: 194, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage bindResponse(3) success
messageID: 3
protocolOp: bindResponse (1)
bindResponse
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 31]
[Time: 0.003809000 seconds]No. Time Source Destination Protocol Info
34 0.044875 10.0.4.5 10.0.4.11 LDAP unbindRequest(4)Frame 34 (73 bytes on wire, 73 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49203 (49203), Dst Port: ldap (389), Seq: 194, Ack: 198, Len: 7
Lightweight-Directory-Access-Protocol
LDAPMessage unbindRequest(4)
messageID: 4
protocolOp: unbindRequest (2)
unbindRequestNo. Time Source Destination Protocol Info
41 0.045692 10.0.4.5 10.0.4.11 LDAP searchRequest(1) “” baseObject Frame 41 (168 bytes on wire, 168 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 102
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(1) “” baseObject
messageID: 1
protocolOp: searchRequest (3)
searchRequest
baseObject:
scope: baseObject (0)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 5
typesOnly: False
Filter: (objectclass=*)
filter: present (7)
present: objectclass
attributes: 4 items
AttributeDescription: supportedSASLMechanisms
AttributeDescription: namingContexts
AttributeDescription: dnsHostName
AttributeDescription: krbName
[Response In: 45]No. Time Source Destination Protocol Info
45 0.049831 10.0.4.11 10.0.4.5 LDAP searchResEntry(1) “” Frame 45 (170 bytes on wire, 170 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 1, Ack: 103, Len: 100
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(1) “” [1 result]
messageID: 1
protocolOp: searchResEntry (4)
searchResEntry
objectName:
attributes: 2 items
PartialAttributeList item namingContexts
type: namingContexts
vals: 1 item
dc=example,dc=net
PartialAttributeList item supportedSASLMechanisms
type: supportedSASLMechanisms
vals: 2 items
DIGEST-MD5
CRAM-MD5
[Response To: 41]
[Time: 0.004139000 seconds]No. Time Source Destination Protocol Info
47 0.050214 10.0.4.11 10.0.4.5 LDAP searchResDone(1) success [1 result]Frame 47 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 101, Ack: 103, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(1) success [1 result]
messageID: 1
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 41]
[Time: 0.004522000 seconds]No. Time Source Destination Protocol Info
49 0.051023 10.0.4.5 10.0.4.11 LDAP bindRequest(2) “” sasl Frame 49 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 103, Ack: 115, Len: 24
Lightweight-Directory-Access-Protocol
LDAPMessage bindRequest(2) “” sasl
messageID: 2
protocolOp: bindRequest (0)
bindRequest
version: 3
name:
authentication: sasl (3)
sasl
mechanism: CRAM-MD5
[Response In: 51]No. Time Source Destination Protocol Info
51 0.051919 10.0.4.11 10.0.4.5 LDAP bindResponse(2) saslBindInProgress (SASL(0): successful result: )Frame 51 (140 bytes on wire, 140 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 115, Ack: 127, Len: 70
Lightweight-Directory-Access-Protocol
LDAPMessage bindResponse(2) saslBindInProgress (SASL(0): successful result: )
messageID: 2
protocolOp: bindResponse (1)
bindResponse
resultCode: saslBindInProgress (14)
matchedDN:
errorMessage: SASL(0): successful result:
serverSaslCreds: 3C313230363034313037322E383530303835334074696765…
[Response To: 49]
[Time: 0.000896000 seconds]No. Time Source Destination Protocol Info
53 0.052091 10.0.4.5 10.0.4.11 LDAP bindRequest(3) “” sasl Frame 53 (133 bytes on wire, 133 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 127, Ack: 185, Len: 67
Lightweight-Directory-Access-Protocol
LDAPMessage bindRequest(3) “” sasl
messageID: 3
protocolOp: bindRequest (0)
bindRequest
version: 3
name:
authentication: sasl (3)
sasl
mechanism: CRAM-MD5
credentials: 64697261646D696E20616161643761393763303638613032…
GSS-API Generic Security Service Application Program Interface
Unknown header (class=1, pc=1, tag=4)
[Response In: 54]No. Time Source Destination Protocol Info
54 0.055927 10.0.4.11 10.0.4.5 LDAP bindResponse(3) successFrame 54 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 185, Ack: 194, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage bindResponse(3) success
messageID: 3
protocolOp: bindResponse (1)
bindResponse
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 53]
[Time: 0.003836000 seconds]No. Time Source Destination Protocol Info
56 0.059245 10.0.4.5 10.0.4.11 LDAP searchRequest(251) “cn=users, dc=example,dc=net” wholeSubtreeFrame 56 (347 bytes on wire, 347 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 281
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(251) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 251
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: or (1)
or: (uid=diradmin)
or: 1 item
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: or (1)
or: (cn=diradmin)
or: 1 item
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 3 items
AttributeDescription: apple-user-adminlimits
AttributeDescription: uid
AttributeDescription: cn
[Response In: 57]No. Time Source Destination Protocol Info
57 0.068570 10.0.4.11 10.0.4.5 LDAP searchResEntry(251) “uid=diradmin,cn=users,dc=example,dc=net”Frame 57 (172 bytes on wire, 172 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49195 (49195), Seq: 1, Ack: 282, Len: 102
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(251) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 251
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 2 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
[Response To: 56]
[Time: 0.009325000 seconds]No. Time Source Destination Protocol Info
59 0.068947 10.0.4.11 10.0.4.5 LDAP searchResDone(251) success [1 result]Frame 59 (85 bytes on wire, 85 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49195 (49195), Seq: 103, Ack: 282, Len: 15
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(251) success [1 result]
messageID: 251
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 56]
[Time: 0.009702000 seconds]No. Time Source Destination Protocol Info
60 0.068974 10.0.4.5 10.0.4.11 LDAP abandonRequest(251)Frame 60 (76 bytes on wire, 76 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 282, Ack: 103, Len: 10
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 252
protocolOp: abandonRequest (16) abandonRequest(251)
abandonRequest: 251
[/code]February 22, 2010 at 2:44 pm #378042morphicParticipant[b]This is part 2 of 3 of my packet-level LDAP trace (see post #1 for details):[/b]
[code]
No. Time Source Destination Protocol Info
63 0.554486 10.0.4.5 10.0.4.11 LDAP searchRequest(4) “cn=users, dc=example,dc=net” wholeSubtreeFrame 63 (330 bytes on wire, 330 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 194, Ack: 199, Len: 264
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(4) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 4
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: or (1)
or: (uid=diradmin)
or: 1 item
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: or (1)
or: (cn=diradmin)
or: 1 item
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 4 items
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
[Response In: 64]No. Time Source Destination Protocol Info
64 0.563787 10.0.4.11 10.0.4.5 LDAP searchResEntry(4) “uid=diradmin,cn=users,dc=example,dc=net”Frame 64 (171 bytes on wire, 171 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 199, Ack: 458, Len: 101
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(4) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 4
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 2 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
[Response To: 63]
[Time: 0.009301000 seconds]No. Time Source Destination Protocol Info
66 0.564141 10.0.4.11 10.0.4.5 LDAP searchResDone(4) success [1 result]Frame 66 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 300, Ack: 458, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(4) success [1 result]
messageID: 4
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 63]
[Time: 0.009655000 seconds]No. Time Source Destination Protocol Info
68 0.564281 10.0.4.5 10.0.4.11 LDAP abandonRequest(4)Frame 68 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 458, Ack: 314, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 5
protocolOp: abandonRequest (16) abandonRequest(4)
abandonRequest: 4No. Time Source Destination Protocol Info
69 0.575675 10.0.4.5 10.0.4.11 LDAP searchRequest(6) “cn=presets_users, dc=example,dc=net” wholeSubtreeFrame 69 (169 bytes on wire, 169 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 466, Ack: 314, Len: 103
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(6) “cn=presets_users, dc=example,dc=net” wholeSubtree
messageID: 6
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=presets_users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (objectclass=apple-preset-user)
filter: and (0)
and: (objectclass=apple-preset-user)
and: 1 item
Filter: (objectclass=apple-preset-user)
and item: or (1)
or: (objectclass=apple-preset-user)
or: 1 item
Filter: (objectclass=apple-preset-user)
or item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-preset-user
attributes: 1 item
AttributeDescription: uid
[Response In: 71]No. Time Source Destination Protocol Info
71 0.578356 10.0.4.11 10.0.4.5 LDAP searchResDone(6) success [0 results]Frame 71 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 314, Ack: 569, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(6) success [0 results]
messageID: 6
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 69]
[Time: 0.002681000 seconds]No. Time Source Destination Protocol Info
73 0.578559 10.0.4.5 10.0.4.11 LDAP abandonRequest(6)Frame 73 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 569, Ack: 328, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 7
protocolOp: abandonRequest (16) abandonRequest(6)
abandonRequest: 6No. Time Source Destination Protocol Info
75 0.672258 10.0.4.5 10.0.4.11 LDAP searchRequest(8) “cn=presets_users, dc=example,dc=net” wholeSubtreeFrame 75 (169 bytes on wire, 169 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 577, Ack: 328, Len: 103
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(8) “cn=presets_users, dc=example,dc=net” wholeSubtree
messageID: 8
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=presets_users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (objectclass=apple-preset-user)
filter: and (0)
and: (objectclass=apple-preset-user)
and: 1 item
Filter: (objectclass=apple-preset-user)
and item: or (1)
or: (objectclass=apple-preset-user)
or: 1 item
Filter: (objectclass=apple-preset-user)
or item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-preset-user
attributes: 1 item
AttributeDescription: uid
[Response In: 76]No. Time Source Destination Protocol Info
76 0.674821 10.0.4.11 10.0.4.5 LDAP searchResDone(8) success [0 results]Frame 76 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 328, Ack: 680, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(8) success [0 results]
messageID: 8
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 75]
[Time: 0.002563000 seconds]No. Time Source Destination Protocol Info
78 0.674992 10.0.4.5 10.0.4.11 LDAP abandonRequest(8)Frame 78 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 680, Ack: 342, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 9
protocolOp: abandonRequest (16) abandonRequest(8)
abandonRequest: 8No. Time Source Destination Protocol Info
79 0.725107 10.0.4.5 10.0.4.11 LDAP searchRequest(10) “cn=users, dc=example,dc=net” wholeSubtreeFrame 79 (577 bytes on wire, 577 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 688, Ack: 342, Len: 511
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(10) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 10
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=diradmin)(cn=diradmin)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=diradmin)(cn=diradmin))
and item: or (1)
or: (|(uid=diradmin)(cn=diradmin))
or: 2 items
Filter: (uid=diradmin)
or item: or (1)
or: (uid=diradmin)
or: 1 item
Filter: (uid=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: diradmin
Filter: (cn=diradmin)
or item: or (1)
or: (cn=diradmin)
or: 1 item
Filter: (cn=diradmin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: diradmin
attributes: 18 items
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uidNumber
AttributeDescription: apple-user-adminlimits
AttributeDescription: authAuthority
AttributeDescription: userPassword
AttributeDescription: apple-generateduid
AttributeDescription: apple-user-authenticationhint
AttributeDescription: jpegPhoto
AttributeDescription: apple-user-homeurl
AttributeDescription: homeDirectory
AttributeDescription: gidNumber
AttributeDescription: apple-user-mailattribute
AttributeDescription: apple-user-printattribute
AttributeDescription: authAuthority
AttributeDescription: uid
AttributeDescription: cn
[Response In: 81]No. Time Source Destination Protocol Info
81 0.739326 10.0.4.11 10.0.4.5 LDAP searchResEntry(10) “uid=diradmin,cn=users,dc=example,dc=net”Frame 81 (307 bytes on wire, 307 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 342, Ack: 1199, Len: 237
Lightweight-Directory-Access-Protocol
LDAPMessage searchResEntry(10) “uid=diradmin,cn=users,dc=example,dc=net” [1 result]
messageID: 10
protocolOp: searchResEntry (4)
searchResEntry
objectName: uid=diradmin,cn=users,dc=example,dc=net
attributes: 7 items
PartialAttributeList item uid
type: uid
vals: 1 item
diradmin
PartialAttributeList item cn
type: cn
vals: 1 item
Directory Administrator
PartialAttributeList item uidNumber
type: uidNumber
vals: 1 item
1000
PartialAttributeList item authAuthority
type: authAuthority
vals: 1 item
;basic;
PartialAttributeList item userPassword
type: userPassword
vals: 1 item
secret
PartialAttributeList item homeDirectory
type: homeDirectory
vals: 1 item
/NetUsers/diradmin
PartialAttributeList item gidNumber
type: gidNumber
vals: 1 item
80
[Response To: 79]
[Time: 0.014219000 seconds]No. Time Source Destination Protocol Info
83 0.739833 10.0.4.11 10.0.4.5 LDAP searchResDone(10) success [1 result]Frame 83 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 579, Ack: 1199, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(10) success [1 result]
messageID: 10
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 79]
[Time: 0.014726000 seconds]No. Time Source Destination Protocol Info
85 0.740009 10.0.4.5 10.0.4.11 LDAP abandonRequest(10)Frame 85 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1199, Ack: 593, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 11
protocolOp: abandonRequest (16) abandonRequest(10)
abandonRequest: 10No. Time Source Destination Protocol Info
86 0.743077 10.0.4.5 10.0.4.11 LDAP searchRequest(12) “cn=groups, dc=example,dc=net” wholeSubtreeFrame 86 (265 bytes on wire, 265 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1207, Ack: 593, Len: 199
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(12) “cn=groups, dc=example,dc=net” wholeSubtree
messageID: 12
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=groups, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(objectclass=posixGroup)(objectclass=apple-group))(objectclass=extensibleObject))(cn=admin))
filter: and (0)
and: (&(&(&(objectclass=posixGroup)(objectclass=apple-group))(objectclass=extensibleObject))(cn=admin))
and: 4 items
Filter: (objectclass=posixGroup)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixGroup
Filter: (objectclass=apple-group)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-group
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (cn=admin)
and item: or (1)
or: (cn=admin)
or: 1 item
Filter: (cn=admin)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: admin
attributes: 3 items
AttributeDescription: memberUid
AttributeDescription: apple-group-memberguid
AttributeDescription: cn
[Response In: 88]No. Time Source Destination Protocol Info
88 0.746904 10.0.4.11 10.0.4.5 LDAP searchResDone(12) success [0 results]Frame 88 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 593, Ack: 1406, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(12) success [0 results]
messageID: 12
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 86]
[Time: 0.003827000 seconds]No. Time Source Destination Protocol Info
90 0.747052 10.0.4.5 10.0.4.11 LDAP abandonRequest(12)Frame 90 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1406, Ack: 607, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 13
protocolOp: abandonRequest (16) abandonRequest(12)
abandonRequest: 12No. Time Source Destination Protocol Info
91 0.759671 10.0.4.5 10.0.4.11 LDAP searchRequest(14) “cn=groups, dc=example,dc=net” wholeSubtreeFrame 91 (267 bytes on wire, 267 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1414, Ack: 607, Len: 201
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(14) “cn=groups, dc=example,dc=net” wholeSubtree
messageID: 14
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=groups, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (&(&(&(objectclass=posixGroup)(objectclass=apple-group))(objectclass=extensibleObject))(gidNumber=80))
filter: and (0)
and: (&(&(&(objectclass=posixGroup)(objectclass=apple-group))(objectclass=extensibleObject))(gidNumber=80))
and: 4 items
Filter: (objectclass=posixGroup)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixGroup
Filter: (objectclass=apple-group)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-group
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (gidNumber=80)
and item: or (1)
or: (gidNumber=80)
or: 1 item
Filter: (gidNumber=80)
or item: equalityMatch (3)
equalityMatch
attributeDesc: gidNumber
assertionValue: 80
attributes: 3 items
AttributeDescription: cn
AttributeDescription: apple-group-realname
AttributeDescription: gidNumber
[Response In: 93]No. Time Source Destination Protocol Info
93 0.770773 10.0.4.11 10.0.4.5 LDAP searchResDone(14) success [0 results]Frame 93 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 607, Ack: 1615, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(14) success [0 results]
messageID: 14
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 91]
[Time: 0.011102000 seconds]No. Time Source Destination Protocol Info
95 0.771051 10.0.4.5 10.0.4.11 LDAP abandonRequest(14)Frame 95 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1615, Ack: 621, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 15
protocolOp: abandonRequest (16) abandonRequest(14)
abandonRequest: 14No. Time Source Destination Protocol Info
97 0.834490 10.0.4.5 10.0.4.11 LDAP searchRequest(16) “cn=presets_users, dc=example,dc=net” wholeSubtreeFrame 97 (169 bytes on wire, 169 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1623, Ack: 621, Len: 103
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(16) “cn=presets_users, dc=example,dc=net” wholeSubtree
messageID: 16
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=presets_users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 0
timeLimit: 0
typesOnly: False
Filter: (objectclass=apple-preset-user)
filter: and (0)
and: (objectclass=apple-preset-user)
and: 1 item
Filter: (objectclass=apple-preset-user)
and item: or (1)
or: (objectclass=apple-preset-user)
or: 1 item
Filter: (objectclass=apple-preset-user)
or item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-preset-user
attributes: 1 item
AttributeDescription: uid
[Response In: 98]No. Time Source Destination Protocol Info
98 0.837204 10.0.4.11 10.0.4.5 LDAP searchResDone(16) success [0 results]Frame 98 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 621, Ack: 1726, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(16) success [0 results]
messageID: 16
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 97]
[Time: 0.002714000 seconds]No. Time Source Destination Protocol Info
100 0.837373 10.0.4.5 10.0.4.11 LDAP abandonRequest(16)Frame 100 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1726, Ack: 635, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 17
protocolOp: abandonRequest (16) abandonRequest(16)
abandonRequest: 16No. Time Source Destination Protocol Info
102 4.271399 10.0.4.5 10.0.4.11 LDAP searchRequest(18) “cn=users, dc=example,dc=net” wholeSubtreeFrame 102 (335 bytes on wire, 335 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 1734, Ack: 635, Len: 269
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(18) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 18
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=untitled_1)(cn=untitled_1)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=untitled_1)(cn=untitled_1)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=untitled_1)(cn=untitled_1))
and item: or (1)
or: (|(uid=untitled_1)(cn=untitled_1))
or: 2 items
Filter: (uid=untitled_1)
or item: or (1)
or: (uid=untitled_1)
or: 1 item
Filter: (uid=untitled_1)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: untitled_1
Filter: (cn=untitled_1)
or item: or (1)
or: (cn=untitled_1)
or: 1 item
Filter: (cn=untitled_1)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: untitled_1
attributes: 4 items
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
[Response In: 103][/code]
February 22, 2010 at 2:48 pm #378043morphicParticipant[b]This is part 3 of 3 of my packet-level LDAP trace (see post #1 for details):[/b]
[code]
No. Time Source Destination Protocol Info
103 4.280630 10.0.4.11 10.0.4.5 LDAP searchResDone(18) success [0 results]Frame 103 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 635, Ack: 2003, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(18) success [0 results]
messageID: 18
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 102]
[Time: 0.009231000 seconds]No. Time Source Destination Protocol Info
105 4.280962 10.0.4.5 10.0.4.11 LDAP abandonRequest(18)Frame 105 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 2003, Ack: 649, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 19
protocolOp: abandonRequest (16) abandonRequest(18)
abandonRequest: 18No. Time Source Destination Protocol Info
106 4.283263 10.0.4.5 10.0.4.11 LDAP searchRequest(253) “cn=users, dc=example,dc=net” wholeSubtreeFrame 106 (336 bytes on wire, 336 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 292, Ack: 118, Len: 270
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(253) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 253
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=untitled_1)(cn=untitled_1)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=untitled_1)(cn=untitled_1)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=untitled_1)(cn=untitled_1))
and item: or (1)
or: (|(uid=untitled_1)(cn=untitled_1))
or: 2 items
Filter: (uid=untitled_1)
or item: or (1)
or: (uid=untitled_1)
or: 1 item
Filter: (uid=untitled_1)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: untitled_1
Filter: (cn=untitled_1)
or item: or (1)
or: (cn=untitled_1)
or: 1 item
Filter: (cn=untitled_1)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: untitled_1
attributes: 4 items
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
[Response In: 107]No. Time Source Destination Protocol Info
107 4.292142 10.0.4.11 10.0.4.5 LDAP searchResDone(253) success [0 results]Frame 107 (85 bytes on wire, 85 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49195 (49195), Seq: 118, Ack: 562, Len: 15
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(253) success [0 results]
messageID: 253
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 106]
[Time: 0.008879000 seconds]No. Time Source Destination Protocol Info
109 4.292335 10.0.4.5 10.0.4.11 LDAP abandonRequest(253)Frame 109 (76 bytes on wire, 76 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 562, Ack: 133, Len: 10
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 254
protocolOp: abandonRequest (16) abandonRequest(253)
abandonRequest: 253No. Time Source Destination Protocol Info
110 4.293275 10.0.4.5 10.0.4.11 LDAP searchRequest(20) “cn=users, dc=example,dc=net” wholeSubtreeFrame 110 (335 bytes on wire, 335 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 2011, Ack: 649, Len: 269
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(20) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 20
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=Untitled 1)(cn=Untitled 1)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=Untitled 1)(cn=Untitled 1)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=Untitled 1)(cn=Untitled 1))
and item: or (1)
or: (|(uid=Untitled 1)(cn=Untitled 1))
or: 2 items
Filter: (uid=Untitled 1)
or item: or (1)
or: (uid=Untitled 1)
or: 1 item
Filter: (uid=Untitled 1)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: Untitled 1
Filter: (cn=Untitled 1)
or item: or (1)
or: (cn=Untitled 1)
or: 1 item
Filter: (cn=Untitled 1)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: Untitled 1
attributes: 4 items
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
[Response In: 112]No. Time Source Destination Protocol Info
112 4.302422 10.0.4.11 10.0.4.5 LDAP searchResDone(20) success [0 results]Frame 112 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 649, Ack: 2280, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(20) success [0 results]
messageID: 20
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 110]
[Time: 0.009147000 seconds]No. Time Source Destination Protocol Info
114 4.302604 10.0.4.5 10.0.4.11 LDAP abandonRequest(20)Frame 114 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 2280, Ack: 663, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 21
protocolOp: abandonRequest (16) abandonRequest(20)
abandonRequest: 20No. Time Source Destination Protocol Info
115 4.304579 10.0.4.5 10.0.4.11 LDAP searchRequest(255) “cn=users, dc=example,dc=net” wholeSubtreeFrame 115 (336 bytes on wire, 336 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 572, Ack: 133, Len: 270
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(255) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 255
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=Untitled 1)(cn=Untitled 1)))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(|(uid=Untitled 1)(cn=Untitled 1)))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (|(uid=Untitled 1)(cn=Untitled 1))
and item: or (1)
or: (|(uid=Untitled 1)(cn=Untitled 1))
or: 2 items
Filter: (uid=Untitled 1)
or item: or (1)
or: (uid=Untitled 1)
or: 1 item
Filter: (uid=Untitled 1)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uid
assertionValue: Untitled 1
Filter: (cn=Untitled 1)
or item: or (1)
or: (cn=Untitled 1)
or: 1 item
Filter: (cn=Untitled 1)
or item: equalityMatch (3)
equalityMatch
attributeDesc: cn
assertionValue: Untitled 1
attributes: 4 items
AttributeDescription: uid
AttributeDescription: cn
AttributeDescription: uid
AttributeDescription: cn
[Response In: 117]No. Time Source Destination Protocol Info
117 4.313087 10.0.4.11 10.0.4.5 LDAP searchResDone(255) success [0 results]Frame 117 (85 bytes on wire, 85 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49195 (49195), Seq: 133, Ack: 842, Len: 15
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(255) success [0 results]
messageID: 255
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 115]
[Time: 0.008508000 seconds]No. Time Source Destination Protocol Info
119 4.313283 10.0.4.5 10.0.4.11 LDAP abandonRequest(255)Frame 119 (76 bytes on wire, 76 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 842, Ack: 148, Len: 10
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 256
protocolOp: abandonRequest (16) abandonRequest(255)
abandonRequest: 255No. Time Source Destination Protocol Info
120 4.314291 10.0.4.5 10.0.4.11 LDAP searchRequest(22) “cn=computers, dc=example,dc=net” wholeSubtreeFrame 120 (206 bytes on wire, 206 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 2288, Ack: 663, Len: 140
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(22) “cn=computers, dc=example,dc=net” wholeSubtree
messageID: 22
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=computers, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(objectclass=apple-computer)(uidNumber=1026))
filter: and (0)
and: (&(objectclass=apple-computer)(uidNumber=1026))
and: 2 items
Filter: (objectclass=apple-computer)
and item: or (1)
or: (objectclass=apple-computer)
or: 1 item
Filter: (objectclass=apple-computer)
or item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-computer
Filter: (uidNumber=1026)
and item: or (1)
or: (uidNumber=1026)
or: 1 item
Filter: (uidNumber=1026)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uidNumber
assertionValue: 1026
attributes: 3 items
AttributeDescription: uidNumber
AttributeDescription: uidNumber
AttributeDescription: cn
[Response In: 122]No. Time Source Destination Protocol Info
122 4.319447 10.0.4.11 10.0.4.5 LDAP searchResDone(22) success [0 results]Frame 122 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 663, Ack: 2428, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(22) success [0 results]
messageID: 22
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 120]
[Time: 0.005156000 seconds]No. Time Source Destination Protocol Info
124 4.319618 10.0.4.5 10.0.4.11 LDAP abandonRequest(22)Frame 124 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 2428, Ack: 677, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 23
protocolOp: abandonRequest (16) abandonRequest(22)
abandonRequest: 22No. Time Source Destination Protocol Info
125 4.321025 10.0.4.5 10.0.4.11 LDAP searchRequest(257) “cn=computers, dc=example,dc=net” wholeSubtreeFrame 125 (207 bytes on wire, 207 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 852, Ack: 148, Len: 141
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(257) “cn=computers, dc=example,dc=net” wholeSubtree
messageID: 257
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=computers, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(objectclass=apple-computer)(uidNumber=1026))
filter: and (0)
and: (&(objectclass=apple-computer)(uidNumber=1026))
and: 2 items
Filter: (objectclass=apple-computer)
and item: or (1)
or: (objectclass=apple-computer)
or: 1 item
Filter: (objectclass=apple-computer)
or item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-computer
Filter: (uidNumber=1026)
and item: or (1)
or: (uidNumber=1026)
or: 1 item
Filter: (uidNumber=1026)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uidNumber
assertionValue: 1026
attributes: 3 items
AttributeDescription: uidNumber
AttributeDescription: uidNumber
AttributeDescription: cn
[Response In: 127]No. Time Source Destination Protocol Info
127 4.326040 10.0.4.11 10.0.4.5 LDAP searchResDone(257) success [0 results]Frame 127 (85 bytes on wire, 85 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49195 (49195), Seq: 148, Ack: 993, Len: 15
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(257) success [0 results]
messageID: 257
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 125]
[Time: 0.005015000 seconds]No. Time Source Destination Protocol Info
129 4.326209 10.0.4.5 10.0.4.11 LDAP abandonRequest(257)Frame 129 (76 bytes on wire, 76 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 993, Ack: 163, Len: 10
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 258
protocolOp: abandonRequest (16) abandonRequest(257)
abandonRequest: 257No. Time Source Destination Protocol Info
130 4.327013 10.0.4.5 10.0.4.11 LDAP searchRequest(24) “cn=users, dc=example,dc=net” wholeSubtreeFrame 130 (324 bytes on wire, 324 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 2436, Ack: 677, Len: 258
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(24) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 24
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(uidNumber=1026))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(uidNumber=1026))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (uidNumber=1026)
and item: or (1)
or: (uidNumber=1026)
or: 1 item
Filter: (uidNumber=1026)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uidNumber
assertionValue: 1026
attributes: 4 items
AttributeDescription: uidNumber
AttributeDescription: uidNumber
AttributeDescription: uid
AttributeDescription: cn
[Response In: 132]No. Time Source Destination Protocol Info
132 4.334883 10.0.4.11 10.0.4.5 LDAP searchResDone(24) success [0 results]Frame 132 (84 bytes on wire, 84 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 677, Ack: 2694, Len: 14
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(24) success [0 results]
messageID: 24
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 130]
[Time: 0.007870000 seconds]No. Time Source Destination Protocol Info
134 4.335047 10.0.4.5 10.0.4.11 LDAP abandonRequest(24)Frame 134 (74 bytes on wire, 74 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 2694, Ack: 691, Len: 8
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 25
protocolOp: abandonRequest (16) abandonRequest(24)
abandonRequest: 24No. Time Source Destination Protocol Info
135 4.336609 10.0.4.5 10.0.4.11 LDAP searchRequest(259) “cn=users, dc=example,dc=net” wholeSubtreeFrame 135 (326 bytes on wire, 326 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 1003, Ack: 163, Len: 260
Lightweight-Directory-Access-Protocol
LDAPMessage searchRequest(259) “cn=users, dc=example,dc=net” wholeSubtree
messageID: 259
protocolOp: searchRequest (3)
searchRequest
baseObject: cn=users, dc=example,dc=net
scope: wholeSubtree (2)
derefAliases: neverDerefAliases (0)
sizeLimit: 1
timeLimit: 0
typesOnly: False
Filter: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(uidNumber=1026))
filter: and (0)
and: (&(&(&(&(&(objectclass=inetOrgPerson)(objectclass=posixAccount))(objectclass=shadowAccount))(objectclass=apple-user))(objectclass=extensibleObject))(uidNumber=1026))
and: 6 items
Filter: (objectclass=inetOrgPerson)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: inetOrgPerson
Filter: (objectclass=posixAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: posixAccount
Filter: (objectclass=shadowAccount)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: shadowAccount
Filter: (objectclass=apple-user)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: apple-user
Filter: (objectclass=extensibleObject)
and item: equalityMatch (3)
equalityMatch
attributeDesc: objectclass
assertionValue: extensibleObject
Filter: (uidNumber=1026)
and item: or (1)
or: (uidNumber=1026)
or: 1 item
Filter: (uidNumber=1026)
or item: equalityMatch (3)
equalityMatch
attributeDesc: uidNumber
assertionValue: 1026
attributes: 4 items
AttributeDescription: uidNumber
AttributeDescription: uidNumber
AttributeDescription: uid
AttributeDescription: cn
[Response In: 137]No. Time Source Destination Protocol Info
137 4.344300 10.0.4.11 10.0.4.5 LDAP searchResDone(259) success [0 results]Frame 137 (85 bytes on wire, 85 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49195 (49195), Seq: 163, Ack: 1263, Len: 15
Lightweight-Directory-Access-Protocol
LDAPMessage searchResDone(259) success [0 results]
messageID: 259
protocolOp: searchResDone (5)
searchResDone
resultCode: success (0)
matchedDN:
errorMessage:
[Response To: 135]
[Time: 0.007691000 seconds]No. Time Source Destination Protocol Info
139 4.344490 10.0.4.5 10.0.4.11 LDAP abandonRequest(259)Frame 139 (76 bytes on wire, 76 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49195 (49195), Dst Port: ldap (389), Seq: 1263, Ack: 178, Len: 10
Lightweight-Directory-Access-Protocol
LDAPMessage
messageID: 260
protocolOp: abandonRequest (16) abandonRequest(259)
abandonRequest: 259No. Time Source Destination Protocol Info
140 4.345719 10.0.4.5 10.0.4.11 LDAP addRequest(26) “uid=untitled_1, cn=users, dc=example,dc=net”Frame 140 (233 bytes on wire, 233 bytes captured)
Ethernet II, Src: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6), Dst: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a)
Internet Protocol, Src: 10.0.4.5 (10.0.4.5), Dst: 10.0.4.11 (10.0.4.11)
Transmission Control Protocol, Src Port: 49204 (49204), Dst Port: ldap (389), Seq: 2702, Ack: 691, Len: 167
Lightweight-Directory-Access-Protocol
LDAPMessage addRequest(26) “uid=untitled_1, cn=users, dc=example,dc=net”
messageID: 26
protocolOp: addRequest (8)
addRequest
entry: uid=untitled_1, cn=users, dc=example,dc=net
attributes: 2 items
AttributeList item uid
type: uid
vals: 1 item
untitled_1
AttributeList item objectClass
type: objectClass
vals: 5 items
inetOrgPerson
posixAccount
shadowAccount
apple-user
extensibleObject
[Response In: 142]No. Time Source Destination Protocol Info
142 4.348161 10.0.4.11 10.0.4.5 LDAP addResponse(26) objectClassViolation (object class ‘inetOrgPerson’ requires attribute ‘sn’)Frame 142 (136 bytes on wire, 136 bytes captured)
Ethernet II, Src: Xensourc_2f:8a:3a (00:16:3e:2f:8a:3a), Dst: AppleCom_57:1e:f6 (00:0d:93:57:1e:f6)
Internet Protocol, Src: 10.0.4.11 (10.0.4.11), Dst: 10.0.4.5 (10.0.4.5)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 49204 (49204), Seq: 691, Ack: 2869, Len: 66
Lightweight-Directory-Access-Protocol
LDAPMessage addResponse(26) objectClassViolation (object class ‘inetOrgPerson’ requires attribute ‘sn’)
messageID: 26
protocolOp: addResponse (9)
addResponse
resultCode: objectClassViolation (65)
matchedDN:
errorMessage: object class ‘inetOrgPerson’ requires attribute ‘sn’
[Response To: 140]
[Time: 0.002442000 seconds][/code]
February 24, 2010 at 1:09 am #378059arekdreyerMemberHave you considered not using Workgroup Manager to create the user; script that, or use different tools?
February 24, 2010 at 1:50 pm #378061morphicParticipant[QUOTE][u]Quote by: arekdreyer[/u][p]Have you considered not using Workgroup Manager to create the user; script that, or use different tools?[/p][/QUOTE]
Thanks for the reply. Sure, I could create the users via `ldapadd`, but the issue isn’t limited to just Users, my WorkGroup Manager also can’t add Groups, Computers, or Computer-Groups – it’s the same issue of not passing any *data* fields, just the containers…
Could someone post (or email me privately) their own packet-level capture of WorkgroupManager authenticating-to an OD/LDAP server and creating a user?
-
AuthorPosts
- You must be logged in to reply to this topic.
Comments are closed