Hi,
If you use sssd you don't need nslcd. Because openldap runs on
localhost you can use the following configuration option for sssd to
disable TLS ( sssd doesn't work without TLS but there is this
undocumented option you can use ):
ldap_auth_disable_tls_never_use_in_production = true
Hummel, Wolfgang wrote:
Hello OpenLDAP community,
we are currently planning for a largescale directory with
1 Bio. entries in a single namespace.
The idea is to divide the DB in 10 equal sized DBs and let
them access by slapd-meta proxies.
Example:
dn: ou=rsp1,c=de,o=mno
entries with
On 04/24/2013 07:45 AM, Hummel, Wolfgang wrote:
Hello OpenLDAP community,
we are currently planning for a largescale directory with
1 Bio. entries in a single namespace.
The idea is to divide the DB in 10 equal sized DBs and let
them access by slapd-meta proxies.
Example:
dn:
Hi Michael,
NSS results must not be dependent on the backend database a directory service
uses.
I activated connection logging and here's the proof that NSS is not the culprit.
Searches initiated by NSS are identical and exactly this behavior can also be
seen when using ldapsearch from
juergen.spren...@swisscom.com wrote:
Hi Michael,
NSS results must not be dependent on the backend database a directory service
uses.
I activated connection logging and here's the proof that NSS is not the culprit.
Searches initiated by NSS are identical and exactly this behavior can also be
Hi,
is it possible to use password stored as pbkdf2_sha256 in slapd?
A first trial on ubuntu 12.04 seems to fail...
My trial was:
userPassword:
{PBKDF2-SHA256}12000$1Pqf0/pfyxmDsPaeEwIghA$ory6WKYGfDASDNwhsWoOiVHwqmBnHginfu.FD2YuXIs
Thnaks in advance
sandro
*:-)
--
Sandro Dentella *:-)
Try {CRYPT} algoritm in slapd and pbkdf2_sha256 in your /etc/auth.conf
WBR
24.04.2013 14:16, Alessandro Dentella пишет:
Hi,
is it possible to use password stored as pbkdf2_sha256 in slapd?
A first trial on ubuntu 12.04 seems to fail...
My trial was:
userPassword:
Hello,
thanks a lot for your support on this topic.
Both inputs from Howard and Pierangelo were really helpful.
With the additional config tweak it works properly.
So far I tested search and delete operations successfully.
Other tests to follow ...
Regards
Wolfgang Hummel
-Original
Hi Dmitry,
On Wed, Apr 24, 2013 at 03:01:57PM +0400, Dmitriy Kirhlarov wrote:
Try {CRYPT} algoritm in slapd and pbkdf2_sha256 in your /etc/auth.conf
I don't think I understand what you suggest. I don't have an auth.conf file
nor I know what it is. My goal is to use password that I already
Hello,
I've a problem with the speed of replication.
I've set up openldap 2.4.33 with a Master and one consumer. At the
moment the full replaction takes abaout 32hours.
No LDAP operations are made on master or consumer during this time.
(I know, i depends on Hardware too, but the two servers are
I'm trying to find documentation for the various values that can be
specified for the MemberOf overlay, particularly olcMemberOfMemberAD and
olcMemberOfMemberOfAD. There are other values where I'm curious as to why
they have their particular value (e.g. olcMemberOfDangling: ignore).
Where is this
On Wed, 24 Apr 2013, Meike Stone wrote:
I've set up openldap 2.4.33 with a Master and one consumer. At the
moment the full replaction takes abaout 32hours.
syncrepl really isn't intended for initial full loads, although it will
work eventually (as you've seen). The preferred method for
Philip Colmer wrote:
I'm trying to find documentation for the various values that can be specified
for the MemberOf overlay, particularly olcMemberOfMemberAD and
olcMemberOfMemberOfAD. There are other values where I'm curious as to why they
have their particular value (e.g.
Thank you so much for everyone's help.
The fix for issue read_config: no serverID / URL match found. Check slapd -h
arguments is the port number used in -h option.
Fixed: slapd -d -1 -h ldap://apggd04dev.pg.dtveng.net;
Error: slapd -d -1 -h ldap://apggd04dev.pg.dtveng.net:389;
Have a great day!
14 matches
Mail list logo