Tom Leach wrote:
Dieter, what I'm trying to do is have a separate process (this being the
perl script) connect with a persistent search to one of a pair of
syncrepl'd multimasters. Are syncrepl and syncprov mutually exclusive?
If that's the case, then I'll have to take another tack since I
Thanks again Dieter. That looks way to difficult for me :). I changed
some things. Now suppose that I want to assign read access to every
roleOccupant in a organizationalRole.
access to * by group/organizationalRole/roleOccupant read
But that's not correct syntax. Slapd won't start. It
Hi,
yes you're right.
You simply have to replicate them (cn=schema,cn=config) with syncrepl
or better replicate the complete conf.d (cn=config) to all nodes.
for example, as described here:
https://help.ubuntu.com/9.10/serverguide/C/openldap-server.html
LDAP replication...
Bye.
On Thu, Aug
smain...@free.fr writes:
Now another error :(
@(#) $OpenLDAP: slapd 2.4.23 (Aug 24 2010 14:56:29) $
r...@myserver:/root/openldap-2.4.23/debian/build/servers/slapd
slapd[11666]: UNKNOWN attributeDescription OLCSMBK5PWDENABLE inserted.
slapd[11666]: config error processing
Hi Adam,
On 26/08/2010 06:18, Adam Cassar wrote:
Hi All,
I would appreciate some insight with a syncrepl issue that I have. The
scenario is as follows:
(1) LDAP master running debian slapd v2.3.30
replicating using syncrepl to
(2) LDAP master running debian slapd v2.4.11
The initial data
By the way. This seems to be correct syntax, but does not give me the
correct result.
access to attrs=uid,userPassword
by anonymous auth
by * none
access to *
by group/organizationalRole/roleOccupant.regex=.+ read
by * none
I am able to bind, but not to read
Hi Dieter,
I did a slaptest -f $configfile -F $path command, here are the results :
/etc/ldap/slapd.d/cn=config/cn\=module\{0\}.ldif
...
olcModuleLoad: {0}back_bdb
olcModuleLoad: {1}ppolicy.la
olcModuleLoad: {2}smbk5pwd.la
...
Thanks. Unfortunately, the backend servers aren't running OpenLDAP,
so syncrepl is out. I can still pull down their schemas and merge
them in, sure. But since I'm basically just using slapd to federate
these other servers, I was sort of hoping there was a more transparent
option that just
Hi Dear Team!
Please, I got problem with my OpenLDAP server on Debian Testing.
I try to purge slapd package with aptitude purge slapd and remove all
files and directories with rm on /etc/ldap/.
after reinstall slapd, I can't see the main configuration file
/etc/ldap/slapd.conf?
but the server
Dieter Kluenter wrote:
The krb5KDCentry objectClass is defined in smbK5pwd.c.
If the module is properly loaded, this objectclass should be
present.
Nope, have a look at smbk5pwd.c.
The heimdal LDAP schema has to be loaded separately.
Ciao, Michael.
Ok, thanks.
What should i do ?
I installed the following packages from the debian unstable repository :
ii slapd 2.4.23-3 OpenLDAP
server (slapd)
ii slapd-smbk5pwd 2.4.23-3 Keeps Samba
and Kerberos
On 26/08/2010 13:53, Eric KOM wrote:
Hi Dear Team!
Please, I got problem with my OpenLDAP server on Debian Testing.
I try to purge slapd package with aptitude purge slapd and remove all
files and directories with rm on /etc/ldap/.
after reinstall slapd, I can't see the main configuration file
Unfortunately. I can't get it working. Thanks again though! I am still
not able to read, only auth/bind.
Suppose I have the following setup.
dn= cn=Role Example 1,o=Organization
objectClass: organizationalRole
cn: Role Example
roleOccupant: uid=webmas...@example.com,ou=Partners,o=Organization
smain...@free.fr writes:
Ok, thanks.
What should i do ?
I installed the following packages from the debian unstable repository :
ii slapd 2.4.23-3 OpenLDAP
server (slapd)
ii slapd-smbk5pwd 2.4.23-3
Hi Daniel,
Glad to see those graphics, its a very substantial performance gain!
Thanks to share this with us!
On Thu, Aug 26, 2010 at 5:57 AM, openldap...@stresst.net wrote:
Hi Matheus,
we've also been wondering about the very slow ldap response times of our
slapds behind our F5s (in
On 18.08.2010 17:16, Rein Tollevik wrote:
On 08/18/2010 04:28 PM, Elmar Marschke wrote:
Here's the logfile of MASTER:
===_BEGIN_CHANGES_WHILE_BOTH_UP_===
Aug 18 15:30:04 ldapmaster slapd[8017]: slap_queue_csn: queing
Michael, yes, I read you answer. I missed the 'latter' and thought that
you meant the persistentSearch was supplied by syncprov and not
syncrepl. I guess I read latter but was thinking former.
I also read Dieter's answer pointing to SyncRequest but here's my issue.
He states that the module
Tom Leach le...@coas.oregonstate.edu writes:
Michael, yes, I read you answer. I missed the 'latter' and thought
that you meant the persistentSearch was supplied by syncprov and not
syncrepl. I guess I read latter but was thinking former.
I also read Dieter's answer pointing to SyncRequest
- Stuart Cherrington stuart_cherring...@hotmail.co.uk wrote:
Hi,
I was wondering if anyone here has had a good/bad experience of getting
Openldap to provision tnsnames lookup for Oracle Databases? We're thinking of
removing our current OID implementation which is very old and as I'm
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 08/26/2010 01:53 PM, Eric KOM wrote:
Hi Dear Team!
Please, I got problem with my OpenLDAP server on Debian Testing.
I try to purge slapd package with aptitude purge slapd and remove all
files and directories with rm on /etc/ldap/.
after
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 08/26/2010 01:53 PM, Eric KOM wrote:
Hi Dear Team!
Please, I got problem with my OpenLDAP server on Debian Testing.
I try to purge slapd package with aptitude purge slapd and remove all
files and directories with rm on /etc/ldap/.
after
On 26/08/2010 13:53, Eric KOM wrote:
Hi Dear Team!
Please, I got problem with my OpenLDAP server on Debian Testing.
I try to purge slapd package with aptitude purge slapd and remove all
files and directories with rm on /etc/ldap/.
after reinstall slapd, I can't see the main configuration
You must be using a slapd located elsewhere.
How did you start slapd? Check the script for slapd's location, and grep that
file.
Probably something like:
/usr/local/...
- chris
Chris Jacobs, Systems Administrator
Apollo Group | Apollo Marketing | Aptimus
2001 6th Ave Ste 3200 | Seattle, WA
Hey,
probably the file or the directory will be dynamically created at
post-install by a debconf script.
Try dpkg-reconfigure slapd if there is such a script, that should trigger it.
In normal cases that should also trigger when installing the
slapd-package, but who knows what's blocking it.
--On August 26, 2010 9:43:33 AM -0700 Tom Leach
le...@coas.oregonstate.edu wrote:
Michael, yes, I read you answer. I missed the 'latter' and thought that
you meant the persistentSearch was supplied by syncprov and not syncrepl.
I guess I read latter but was thinking former.
I also read
Frederik Bosch frederik.bo...@gmail.com writes:
Unfortunately. I can't get it working. Thanks again though! I am
still not able to read, only auth/bind.
Suppose I have the following setup.
dn= cn=Role Example 1,o=Organization
objectClass: organizationalRole
cn: Role Example
roleOccupant:
On 08/26/2010 11:10 PM, Mike Olivieri wrote:
However, when I try to search for that same user using ldapsearch, I get
no results.
ldapsearch -x \
-a always \
-h fqa-ldap \
-p 9389 \
-D CN=mike0,OU=Service Accounts,dc=myco_ad,dc=mycompany,dc=com \
-w
27 matches
Mail list logo