On 13/12/2012 18:00, cbulist wrote:
Hi,
We have a problem using Red Hat 5.7, gdm 2.16.0-59 y pwdPolicy.
When an account gets pwdMaxAge limit and the user try to login using
GUI the user doesn't receive any warning about expiration account, it
just requests the user and password like a normal
On Wednesday, 1 August 2012 22:21:07 Qian Zhang wrote:
BTW, I do not know how to configure PAM to only allow a group or some
groups to login the machine, if anyone can tell me the steps, it will
be really appreciated!
This isn't specific to LDAP or any other nss plugin, but specific to PAM.
On Friday, 11 May 2012 14:32:07 Cyril Grosjean wrote:
On both masters, I get exactly the same result (command ran as root of
course):
ls -lZd /etc/openldap/slapd.d /etc/openldap/slapd.d/cn=config.ldif
drwx--. ldap ldap system_u:object_r:slapd_db_t:s0
/etc/openldap/slapd.d -rw---.
On Wednesday, 16 May 2012 11:33:02 Igor Zinovik wrote:
And here is my problem:
I can successfully execute search query by hands using ldapsearch(1):
ldap2:~# ldapsearch -H ldap:/// ldaps:/// ldapi:/// -b
dc=test,dc=org -LLL -s base -x -D
'uid=slapd-pcmk,ou=Services,dc=test,dc=org -w
On Wednesday, 16 May 2012 15:12:15 Michele Mase' wrote:
Tx! We'plan to upgrade the system, so we'll use openldap2.4.x. We have more
than 1500 server and about 50% of them are linux, we must use rhel rpms
(due to our datacenter roles, all the servers should be identical).
Unless you have other
On Tuesday, 15 May 2012 09:44:13 zingalo wrote:
On 05/07/2012 05:33 PM, Buchan Milne wrote:
On Sunday, 6 May 2012 10:08:23 zingalo wrote:
Hi,
i have problems mounting on the client ubuntu the users's home
directories that are on a server debian squeeze with ldap-samba.
First of all
On Monday, 7 May 2012 08:04:34 Braden McDaniel wrote:
On Sun, 2012-05-06 at 22:21 -0700, Chris Jacobs wrote:
Or restarted sssd?
I've restarted both the client machine and the server; so, yes.
What is your OS?
Fedora 17 prerelease.
Have you googled for ldap cache and your os?
I
On Monday, 7 May 2012 16:22:58 Braden McDaniel wrote:
On Mon, 2012-05-07 at 11:27 +0200, Buchan Milne wrote:
On Monday, 7 May 2012 08:04:34 Braden McDaniel wrote:
If I remove the user from the group in LDAP, that is reflected in the
output of groups. But, when I add it back, groups
On Sunday, 6 May 2012 10:08:23 zingalo wrote:
Hi,
i have problems mounting on the client ubuntu the users's home
directories that are on a server debian squeeze with ldap-samba.
First of all, which is the correct syntax for homeDirectory attribute if
that home is on a server. I wrote:
On Wednesday, 4 April 2012 08:50:08 Michael Ströder wrote:
Suneet Shah wrote:
I am creating a user in OpenLDAP using Java. The user is being
successfully created, but the passwords are being stored in clear text.
How do you set the password? If you send attribute userPassword along when
On Tuesday, 3 April 2012 16:52:35 Olivier wrote:
A quite trivial issue I have :
I have installed centralized policy sudo rules in ldap server
(I use schema.OpenLDAP from http://www.sudo.ws; ).
I also have configured linux clients to check ldap rules to
grant sudo access to certain
On Tuesday, 3 April 2012 23:16:43 Collins, Cris wrote:
The problem was resolved by adding the following per the nis schema. My
statement below was incorrect. shadowLastChange was not updating, as
getent shadow username showed me.
access to attrs=shadowLastChange,shadowMax
by
On Monday, 26 March 2012 16:21:17 stefano wrote:
hi, i was modifying uidNumber attribute of a user but then has been
standing for a few minutes and I stopped it:
root@amahoro:~# ldapmodify -x -W -D 'cn=Manager,dc=amahoro,dc=bi'
Enter LDAP Password:
dn: uid=stefano,cn=Admins,dc=amahoro,dc=bi
On Tuesday, 20 March 2012 12:53:08 Howard Chu wrote:
The purpose of cn=config is to support configuration changes on a server
without causing any service outage. Supporting Deletes in cn=config is
fundamentally opposed to this goal. E.g., deleting an olcDatabase entry
cannot be seen as
On Monday, 20 February 2012 23:57:17 Nick Milas wrote:
On 20/2/2012 11:14 μμ, Dieter Klünter wrote:
The AdminGuide (and slapd.,access(5) clearly say
[dnattr=attrname]
that is, attribute name is commonName or telephoneNumber, but not an
attribute value like AdminGroups.
Thanks Dieter,
On Tuesday, 21 February 2012 11:25:22 Marc Patermann wrote:
Howard,
Howard Chu schrieb (31.01.2012 14:22 Uhr):
Marc Patermann wrote:
Howard Chu schrieb (31.01.2012 12:08 Uhr):
Marc Patermann wrote:
under some circumstances DEL don't get replicated to the consumers
(SyncRepl). I think
On Tuesday, 21 February 2012 12:41:40 Marc Patermann wrote:
Buchan,
Buchan Milne schrieb (21.02.2012 11:38 Uhr):
As far as I have read in changelogs and ITS, anything from
OPENLDAP_REL_ENG_2_4 (including 2.4.29) before:
commit 10c81e2a46c9b603ba1dfcf53422573d5068ba04
Author: Howard
On Wednesday, 15 February 2012 15:21:53 Szilard Gyorgy wrote:
HI Suomi
Yes, but I need all this for my Cisco router
AFAIK, Cisco routers don't support LDAP authentication, but instead RADIUS
(e.g. for VPN authentication), TACACS+ and Kerberos (e.g. administrative
acces).
Maybe you can
On Monday, 13 February 2012 23:50:02 Zachary Musselman wrote:
Hello,
I am running 2.6.18-274.17.1.el5 with openldap-2.3.43-12.el5_7.10. Lately
I've been seeing the following errors in /var/log/messages. Once this
error starts it appears to almost freeze the server. I cannot connect via
On Friday, 10 February 2012 01:04:09 Hallvard B Furuseth wrote:
Getting back to how to speed up restore:
If you do move to slapcat/slapadd, note that tuning slapd as described
in the Guide speeds up slapadd a lot, if you have not already done
that. So does the -q flag to slapadd.
On Thursday, 9 February 2012 21:00:36 Brian Reichert wrote:
On Wed, Feb 08, 2012 at 12:55:34PM +0200, Buchan Milne wrote:
My implementation is shipped in my openldap packages (with symlinks in
cron.* enabled for daily backups by default), you can find the scripts
here:
http
On Wednesday, 8 February 2012 01:22:33 Jean-Luc Wasmer wrote:
Hi,
The user db on my system is stored in LDAP and integrated with PAM and NSS.
The LDAP db also contain address book data for each user. I would like to
be able to call ldap utilities (e.g. ldapsearch) without having the user
to
On Tuesday, 7 February 2012 23:53:52 Brian Reichert wrote:
I'm curious if the tactics described in this thread are currently
sufficient:
http://www.openldap.org/lists/openldap-software/200608/msg00152.html
The thread overall suggests the tried-and-true tactic of using
slapcat to extract
On Wednesday, 1 February 2012 21:52:56 Andy Carlson wrote:
Are there any ACLs that control what cn=directory manager,cn=config can
modify or is it a LDAP superuser sort-of account? I only ask because I
want to blow away my ACLs (olcAccess attributes in olcDatabase={2}bdb) and
re-add updated
On Wednesday, 18 January 2012 11:06:45 Toomas Vendelin wrote:
Thank you, Dan!
Indeed, setting
olcSaslHost: ldap.example.com
instead of
olcSaslHost: kdc.example.com
solves the issue.
Now, when I look back for what caused me this hiccup, this has come to
my attention:
- in
On Friday, 13 January 2012 01:30:59 Mathias wrote:
Hi,
I have trouble understanding a rather simple LDAP config issue that
I'm sure someone on this list can easily help with:
How do I add a (or change the) pattern of the bind DN that slapd lets
me authenticate with?
I have a working
On Monday, 9 January 2012 13:29:05 rey sebastien wrote:
Hi!
I start with a fresh installation of openldap 2.4.28 on debian. They are
some problem with the debian package, and with gnuTLS, so i compile a
version with opennSSL library.
It's hard to understand with the official documentation
On Monday, 9 January 2012 12:33:43 Axel Birndt wrote:
Hi Dieter,
thank you very much for your answer. But in which file (or place) should
i put this lines?
I doesn't have a slapd.conf!
Am 07.01.2012 23:09, schrieb Dieter Klünter:
Do you have a doc or howto with further information
On Tuesday, 3 January 2012 03:33:42 Maxim Vetrov wrote:
Hi!
Trying to start test server (openldap 2.4.25) on my home box (FreeBSD
8.2 i386) I get this error:
Can you provide the commandline invocation that provided this error message?
...
ldif_back_add: olcDatabase={0}config,cn=config
On Tuesday, 3 January 2012 13:13:55 Götz Reinicke wrote:
Hi,
we do run an Red Hat EL 6.x server with the openldap package from Red
Hat currently version 2.4.19-15.el6_0.2. The ldap is used by our mail
and fileserver for authentication.
The last time I updated I had a big problem with the
On Monday, 2 January 2012 12:23:57 Adrián Arévalo Tirado wrote:
OpenLDAP version: 2.4.23-7.2
Samba Version: 2:3.5.6
Operating SystemDebian 6.0 Squeeze
Hello everybody.
I'm trying to install a Samba + LDAP PDC but when I try to create the
database with smbldap-populate I get
On Friday, 23 December 2011 09:59:00 Chris Jacobs wrote:
If that's true, would there be anyway to change the error text? Perhaps
Password policy overlay only allows one password value in dn - more than
one found. If there's a clear reason for an error, I think the added text
would be valuable
On Friday, 23 December 2011 11:05:17 Selcuk Yazar wrote:
My problem is about Redhat :(
No.
OpenLDAP supports a new configuration method. It seems you haven't read any
documentation about it.
RHEL6 defaults to using this configuration method, but you don't *have* to use
it.
if I wantto
On Thursday, 22 December 2011 12:26:38 Marco Weber wrote:
Hello,
I'm running openldap with password policy overlay. after the overlay
installation and configuration, we cannot change the passwords anymore.
Michael Ströder told that an LDAP modify request should resolve this issue,
but it
On Tuesday, 20 December 2011 11:13:07 Selcuk Yazar wrote:
Hi
i've installed succefully, ppolicy overlay and ldap password policy
objects my directroy.
So what do i expected for now ?
because nothing happened. we are using jamm mail account schemas and sample
accounts very old, and i
On Tuesday, 20 December 2011 10:55:12 Selcuk Yazar wrote:
Hi,
I want to ldap users to change their password.
sample user dn is
mail=ede...@.mail..edu.trhttp://193.255.140.119/phpldapadmin/htdoc
s/cmd.php?cmd=template_engineserver_id=1dn=mail%3Dedergi%40trakyamail.tra
On Wednesday, 14 December 2011 20:08:37 NetNinja wrote:
Hello,
I have a two different user accounts and one works the other not so
much. The account user03 works on both Solaris 10 and RHEL clients.
While test01 can do everything but login to the Solaris 10 client, I
can use this account to
On Wednesday, 14 December 2011 09:13:11 Jayavant Patil wrote:
Hi,
I am using openldap-2.4.19-4.x86_64 on fedora 12 machine. On client
node, in /etc/ldap.conf file, we specify binddn and bindpw. If not
specified, the request will be anonymous. I have on each client machine
more than 500
On Tuesday, 22 November 2011 13:35:22 Jayavant Patil wrote:
I got the desired solution. Thanks Buchan !!!
My next query is as follows:
Suppose we have 1000 hosts and we want to give 'user1' access to 999
hosts (with 1 restricted host). Then, in such case, we need to specify all
999
On Monday, 21 November 2011 16:17:33 Christian Manal wrote:
Am 21.11.2011 14:25, schrieb Jayavant Patil:
Hi,
I am using openldap-2.4.19-4 on fedora 12 machine. Does anybody know
how
to enable/disable a user account in openLDAP? I know ppolicy overlay but
I don't require
On Monday, 21 November 2011 09:00:23 Jayavant Patil wrote:
Hi,
I am just storing the user related information in the directory.
e.g.
My .ldif file contents are as follows:
dn: uid=ldap_5,ou=People,dc=dc,dc=com
uid: ldap_5
cn: ldap_5
sn: ldap_5
mail: lda...@dc.com
On Thursday, 6 October 2011 08:14:40 vijay s sheelavantar wrote:
Hi,I am sorry for the inconvenience caused due to the unreadable
format.nbsp;On fedora I don't have this file. /etc/pam.d/common-session.
Below logs for your reference.
in the log file /var/log/messages i found the following
On Saturday, 8 October 2011 00:01:07 NetNinja wrote:
On Fri, Oct 7, 2011 at 5:47 PM, NetNinja 2bitni...@gmail.com wrote:
I'm sorry about that. I was reading in the book Solaris 10 System
Administration Essential and it says on pg 365 that the openldap server
needs to be patched so that the
On Thursday, 29 September 2011 10:39:53 Lukas Grässlin wrote:
On 09/29/2011 10:17 AM, Clément OUDOT wrote:
Hello Lukas,
nice improvement. I saw you rewrite all the thing, was there no
possibility to patch the LTB module? I would be happy if you
contribute it on the LDAP Tool Box
On Thursday, 29 September 2011 02:26:07 criderke...@aol.com wrote:
I'm learning and testing different ways of configure my LDAP to handle
multiple apps. I gave up on groupofnames because I couldn't get searches
to pull out the Users in a Group.
Then it seems your applications are brain-dead.
On Tuesday, 27 September 2011 18:59:52 Michael Ströder wrote:
HI!
We have {SSHA}-hashed passwords in attribute userPassword.
One application sends CompareRequests with the clear-text password instead
of a BindRequest to validate the password which obviously fails. The
application vendor
On Wednesday, 28 September 2011 16:24:35 Dan White wrote:
On 27/09/11 18:59 +0200, Michael Ströder wrote:
HI!
We have {SSHA}-hashed passwords in attribute userPassword.
One application sends CompareRequests with the clear-text password instead
of a BindRequest to validate the password
On Friday, 16 September 2011 09:57:14 vijay s sheelavantar wrote:
I have created the
(self-signed)
TLS certificates using following command on the server.
openssl req -newkey rsa:1024 -x509 -nodes -out \ server.pem -keyout
server.pem -days 3650
and I have created the client.pem by
On Friday, 2 September 2011 03:35:24 vijay s sheelavantar wrote:
Hi Friends,
I have a openldap server running on one machine (fedora10) and pam_ldap.so
and nss_ldap.so running on the other machine. I have added a new user to
the LDAP server database, this user is not created on client machine.
On Thursday, 1 September 2011 10:14:12 Thomas Rasmussen wrote:
On 31/08/2011, at 19.29, Quanah Gibson-Mount wrote:
--On Wednesday, August 31, 2011 11:33 AM +0200 Thomas Rasmussen
rasmussen.tho...@gmail.com wrote:
After a restart and performing a ldapsearch slapd has allocated over
500MB of
On Saturday, 27 August 2011 12:23:38 pradyumna dash wrote:
Hi,
I want to achieve ldaps, that means all the communication should use 636
port,
You had done the configuration to *allow* encrypted communication.
i have changed the parameters in the /etc/openldap/sysconfig file,
but no luck.
On Saturday, 27 August 2011 22:37:59 Daniel Qian wrote:
Yes I wasn't aware of subjectAltName and I am still not sure if nss_ldap
in the OS honors that but I will test it out. Thanks Chris for answering
back.
nss_ldap supports it if the underlying ldap library supports it.
Solaris'
On Monday, 29 August 2011 14:07:39 Naga Chaitanya Palle wrote:
Hi,
I have configured sudoers in my environment.
You may want to provide more detail on the environment (OS/distro, which LDAP-
base naming service - e.g. nss_ldap, pam-nss-ldapd etc. you are using).
But when I try to execute a
On Friday, 26 August 2011 12:56:38 Naga Chaitanya Palle wrote:
Hi,
I am trying to set up N-way multimaster configuration using syncrepl on
openldap2.4 for RHEL 5.4
Currently I am using two masters for testing.
The slapd.conf on server1 is
moduleload syncprov.la
serverid124
On Tuesday, 23 August 2011 16:12:52 rocke.robert...@pch.gc.ca wrote:
From: Buchan Milne bgmi...@staff.telkomsa.net
To: openldap-technical@openldap.org
Cc: rocke.robert...@pch.gc.ca
Date: 23/08/2011 09:45 AM
Subject: Re: replication breaks ppolicy
On Tuesday, 23 August 2011 15:12
On Tuesday, 23 August 2011 15:12:41 rocke.robert...@pch.gc.ca wrote:
Good morning all
After quite a bit of work, I got replication working (thank you all).
So I forged ahead and deployed the server in our RHEL 5.5 environment.
RHEL5's openldap packages finally became somewhat usable at
On Friday, 19 August 2011 11:27:03 anax wrote:
Hi listers
Installation here:
openldap-servers-2.4.15-7.fc11.i586
One master server, two backup servers (syncrepl).
All authentication and mailing is managed by ldap.
1. About indexing:
When i check the slapd-log, i see many
=
On Thursday, 18 August 2011 11:26:33 Olivier wrote:
Dmitriy Kirhlarov di...@higis.ru:
What a reason for split user account data to two objects?
Good question, thanks Dimitry !
Here is the problem I had when I tried to merge all info in the same object
:
$ ldapadd -x -D
On Tuesday, 16 August 2011 15:58:16 Washington, Andrea wrote:
We have Red Hat Linux 5.6.
RHEL ships with a copy of OpenLDAP, which is installable via the platform's
software management tools (e.g. 'yum install openldap-servers' would pull in
most pieces).
You seem to not know what you need
On Wednesday, 10 August 2011 10:11:17 pradyumna dash wrote:
Guys,
I have a query, lets take a scenario :
Assume we have 2 servers Server1 and Server2 and 2 groups Admin and
ITTech, What is needed is like say when a user bob logging
in to Server1 he will get the group Admin, but when he
On Tuesday, 9 August 2011 04:54:29 Alexey Shalin wrote:
Hello, please help build a query for LDAP, to get a list of accounts whose
password has expired
You may find some useful scripts or examples here:
http://staff.telkomsa.net/~bgmilne/ldap/
Regards,
Buchan
On Wednesday, 29 June 2011 16:15:54 Daniel Qian wrote:
On 11-06-29 9:26 AM, Mark Cave-Ayland wrote:
On 29/06/11 12:59, Howard Chu wrote:
Thanks for the response - this makes a bit more sense now. Just to
clarify another point: when you generate schemaConvert.conf, I guess
that you need to
On Thursday, 23 June 2011 16:19:45 Peter Palmreuther wrote:
Hello,
I tried to use 'db_archive' to figure, which of those many log.* files
already accumulated I can safely remove. Unluckily it didn't print any
name, albeit there're 170 file and according to 'fuser log.*' only the
last one is
On Thursday, 2 June 2011 20:11:39 Nanoic Dalflanlun wrote:
I'm still seeking assistance. Something I noticed is that slapd
appears to be ignoring the logging detail parameter regardless of
whether I run it on Windows or CentOS. I tried setting the detail
level to any and never had anything
On Wednesday, 1 June 2011 13:20:34 Pieter Baele wrote:
Right now, our primary LDAP systems are Sun Directory Server and AD.
All Solaris boxes connect to the Directory Server, but isn't it better
to set up seperate OpenLDAP servers for a Linux environment?
IMHO there is no reason to have
On Monday, 16 May 2011 17:38:31 pradyumna dash wrote:
Hi,
I am trying to acheive centralizing SUDO, but facing an issue,i
suspect its something to do with sudoers.schema, May be am wrong. I
think somehow the slapd process is not able to read it. Please suggest
how to fix the issue.
[...]
On Friday, 20 May 2011 11:50:05 David Dumortier wrote:
Hi everybody,
I try to setup a slapd with TLS.
Do you mean START_TLS on ldap://, or ldaps:// ? I don't think you can test
START_TLS on ldap:// with gnutls-cli-debug.
ldd /usr/sbin/slapd returns gnutls.so as waited.
I generated a
On Sunday, 15 May 2011 15:29:34 Mohammad D wrote:
Hi all
I have installed openldap 2.4.23 on windows server 2003. when I run this
query on ldapsearch:
ldapsearch -h directory.verisign.com -b cn=* (o=*)
certificaterevocationlist
I get the following error:
SASL/EXTERNAL authentication
On Saturday, 14 May 2011 01:16:38 Juan Diego Calle wrote:
Hi,
For weeks I have being reading about openldap, in the mailing lists, etc.
Basically I have Samba with ldap and I need a GUI to administrate the
users(I can use smbldap-tools and a shell, but not some of the
administrators). I
On Thursday, 5 May 2011 20:19:51 Johan Karlsson wrote:
Hi!
While looking for OpenLDAP monitoring solutions, i found Buchan's
Xymon/Hobbit script at http://staff.telkomsa.net/~bgmilne/xymon/ol/
I saw some previous discussion about it on this list so I thought I'd give
it a shot.
I'm
On Friday, 6 May 2011 00:11:32 Bidwell, Matt wrote:
I'm running OpenLDAP 2.5.24 on 2 servers. I'm trying to enforce some
security rules on client machines through the ppolicy overlay. All the
lockout stuff works fine. I understand that pwdMinLength will not work by
design because the
On Wednesday, 4 May 2011 10:58:24 Buchan Milne wrote:
On Wednesday, 4 May 2011 09:28:15 Brijesh wrote:
On Tue, 3 May 2011 08:23:27 +0200 (SAST)
i have just submitted a bug to mandriva
https://qa.mandriva.com/show_bug.cgi?id=63191
As you said it looks like its a mandriva specific
On Wednesday, 4 May 2011 09:28:15 Brijesh wrote:
On Tue, 3 May 2011 08:23:27 +0200 (SAST)
i have just submitted a bug to mandriva
https://qa.mandriva.com/show_bug.cgi?id=63191
As you said it looks like its a mandriva specific problem so i am
thinking of either downgrading the package or
- Original Message -
Hi,
I have recently upgraded the openldap and now it doen't start it stops
saying that
unknown directive smbk5pwd-enable inside backend database definition
It has been working fine untill the upgrade.
What versions did you have installed when it was
- Original Message -
On 28/4/2011 3:13 μμ, Torsten Schlabach (Tascel eG) wrote:
I never used PowerDNS, we always went with BIND. Fortunately the DLZ
parts
made it into the code and the version which has them built in made
it into
the standard Linux distros in the meanwhile.
- Original Message -
On 28/4/2011 3:13 μμ, Torsten Schlabach (Tascel eG) wrote:
Moreover, as we have recently invested a lot of effort to
setup the current backbone (including an internal Web application for
DNS record management) and BIND uses a different LDAP schema
The difference
- Original Message -
Hi to all,
I'm trying write a script shell to simplifies the change of pass of
users.
You may prefer to look for some existing scripts/tools. For example, I have:
http://staff.telkomsa.net/~bgmilne/ldap/ldap-passwd.pl
which can work as a shell command or as
On Tuesday, 3 May 2011 11:57:36 Torsten Schlabach (Tascel eG) wrote:
On Tue, 3 May 2011 08:28:02 +0200 (SAST), Buchan Milne
bgmi...@staff.telkomsa.net wrote:
I just wanted to add that according many testimonies, like:
https://lists.isc.org/mailman/htdig/bind-users/2011-February/082814.html
On Wednesday, 20 April 2011 09:28:26 LALOT Dominique wrote:
Hello,
Our openldap is sometimes long to stop and init scripts failed to stop.
Apr 20 09:10:47 ldap1 slapd[15105]: daemon: shutdown requested and
initiated.
Apr 20 09:10:47 ldap1 slapd[15105]: slapd shutdown: *waiting for 0
On Monday, 4 April 2011 16:28:07 eric wrote:
I was familiar configuring openldap with slapd.conf ver 2.3 I recently
install 2.4 and am having a bear of a time trying to follow any
instructions from any source... man pages, openldap.org, and
On Thursday, 31 March 2011 17:56:05 deconya wrote:
Hi list
Im preparing a BDC server using samba with ldap and I start to import the
database. At first I commented and error with the suffix but not was the
last of my problems, Im importing and appears:
= str2entry: str2ad(sambaLogonTime):
On Thursday, 31 March 2011 09:28:12 olivier morel wrote:
i would like to remove my account on the mailing list , how can do this .
thk
From the headers in *every* mail to this list, including yours:
List-Unsubscribe: http://www.openldap.org/lists/mm/options/openldap-
technical,
This thread is a good example of why top-posting sucks ...
On Friday, 25 March 2011 17:27:10 Kevin Josue Zambrano Chavez wrote:
On Fri, Mar 25, 2011 at 10:23 AM, Marco Pizzoli
marco.pizz...@gmail.comwrote:
Hi,
I could be corrected if I'm wrong, but this problem is not related to
OpenLDAP.
- Mike Cannady mike.cann...@htcinc.net wrote:
I have implemented a multi-master two node ldap with openldap 2.4.22
and Berkely DB 4.8.26 on Redhat enterprise 5.4 with several readonly
replicas off of the masters.
I have a need to add several optional attributes to a schema and
On Tuesday, 22 March 2011 16:42:11 fuzzy_4711 wrote:
Original - Text
What are you having problems with? Is this a new installation or an
existing system?
It is an new installation on an opensuse 11.4.
I have both services running on the same box: ldap and samba
- Hendrik van der Ploeg hvdpl...@competa.com wrote:
Hello,
Can I add 1 user in cn=config so that it can access all the
underlying
databases? (olcdatabase={1}bdb, olcdatabase={2}bdb etc.
cn=config is not for hosting entries for DUA clients, just as the 'mysql'
database is not for
On Tuesday, 22 March 2011 12:12:53 Hendrik van der Ploeg wrote:
ok thanks,
But how can I set the user in a seperate database to have access to a
different database?
Use a separate local database with a suitable backend (e.g. hdb or bdb).
Any local DN can appear in access control
The samba aspects (e.g. anything about a SID) belong on the samba mailing lists
IMHO.
OpenLDAP configuration, use of OpenLDAP utilities, ACLs for samba to use would
be on-topic.
The grey area would be LDAP aspects in the smb.conf file or similar.
Regards,
Buchan
- fuzzy_4711
- l...@mm.st wrote:
I am rebuilding our aging pre 2.2 openldap servers that ran ldbm
backend and slurpd. We ran this setup without any issues for many
years.
The new setup is:
RH5
openldap 2.3.43 (Stock RH)
bdb backend 4.4.20 (Stock RH)
Entries in db- about 1820
LDIF file is
On Monday, 7 March 2011 01:52:21 Michael Smith wrote:
buildd@vernadsky:/build/buildd/openldap2.3-2.4.9/debian/build/servers/slap
d WARNING: No dynamic config support for database shell.
slapd starting
syncrepl_entry: rid=123 LDAP_RES_SEARCH_ENTRY(LDAP_SYNC_ADD)
syncrepl_entry: rid=123
- Joe Tseng joe_ts...@hotmail.com wrote:
I recently set up a file server using Fedora and I configured it to
run as a PDC with Samba and OpenLDAP. It had been running very
smoothly until just last night when I discovered when I tried to
restart the slapd service it would just sit there
- Joe Tseng joe_ts...@hotmail.com wrote:
I found the link below that sounds exactly like my problem:
https://bugzilla.redhat.com/show_bug.cgi?id=553032
Seems RH hasn't figured it out yet ...
I did notice httpd was hung. I configured it so it'd auth against
LDAP for
my SVN repos;
- Konstantin Boyandin temmo...@gmail.com wrote:
Narrower question: do password policy module developers plan to
take
into account what IPs are used to connect (thus, blocking only
access
from specific IPs)?
Maybe you should provide a specific use case, besides my users
violate
to the machine (i.e. has and entry in /etc/passwd
etc) and is not in the ldap directory. (hence slapd can start without
the ldap authentication.
No problems here:
[root@tiger ~]# /etc/init.d/ldap status
slapd (pid 21317) is running...
[root@tiger ~]# getent passwd bgmilne
bgmilne:x:501:501:Buchan
- Ruud Baart r.j.ba...@prompt.nl wrote:
Sorry, I think I found a way to start slapd with gdb. The main mistake
I
made was using uid openldap. It should be run as root.
# gdb -q -x /root/gdb.init --args /usr/sbin/slapd -h ldap:///
ldapi:/// -g openldap -u openldap -f
On Tuesday, 1 March 2011 07:23:41 Konstantin Boyandin wrote:
Hello,
Thanks to everyone having answered me earlier, I've managed to set up
password policy on the OpenLDAP provided in CentOS 5.5 repositories
(current version 2.3.43).
The setup: we have password policy enabled for users
- Tim Dunphy bluethu...@gmail.com wrote:
ldapsearches on the client were working just as they were
before and getents on the client were not. But I was seeing a new
error in the logs at this point:
Feb 23 01:16:45 LBSD2 slapd[52517]: conn=1471 op=1 SRCH
On Wednesday, 16 February 2011 20:37:45 Leonardo Carneiro wrote:
On Wed, Feb 16, 2011 at 8:43 AM, Andrew Findlay
andrew.find...@skills-1st.co.uk wrote:
On Tue, Feb 15, 2011 at 05:08:43PM -0200, Leonardo Carneiro wrote:
In the original question:
Hello everyone,
I upgraded my debian
On Tuesday, 15 February 2011 09:04:41 MJ Hughes wrote:
Hi,
I'm an LDAP newbie who has inherited the maintenance of an LDAP system, and
am learning on the fly. Until now I've been able to puzzle out all the
issues I've faced, but finally my google fu has failed me, so I'm seeking
more
On Tuesday, 8 February 2011 19:11:52 Michael Starling wrote:
I'm running openldap-2.3.43-12.el5 on a RHEL 5.5 system:
I believe I have TLS encryption working but I'd like to be able to verify
my client connections.
On my LDAP server I have the following in slapd.conf
TLSCipherSuite
1 - 100 of 183 matches
Mail list logo