Re: OLC (online config error)

-f slapd.conf -F slapd.d waiting for your inputs did you create a slapd.d directory? -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Perfect Forward Secrecy

Hi, I wonder whether openldap, if compiled with openssl-1.x, will support PFS. http://en.wikipedia.org/wiki/Perfect_forward_secrecy This issue has been discussed on several mailinglists recently. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10

Re: ldappasswd: account has expired (account expired)

related, get acquainted with your pam environment. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How to two-way synchronization on openldap 2.4.33 version

, it can. http://www.openldap.org/doc/admin24/replication.html#N-Way%20Multi-Master -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Openldap configuration import LDIF

://192.168.1.156 -b your base -s sub * -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: str2entry: invalid value for attributeType objectClass #2 URGENT

. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: OpenLdap from OpenCSW installation

something bad? Probably back-bdb is dynamically build in. Test with ./slapd -VVV If so, you have to declare a module path and back-bdb module in slapd.conf. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

RE: configuring monitor database in SLES11 SP2

). The docs still describe the slapd.conf-way... first check if back-monitor is statically build in /usr/lib/openldap/slapd -VVV if so, slapadd dn -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E -- Dieter Klünter | Systemberatung http

Re: OTP

mechanism list. Read on opie(4), opiepasswd(1) and opiekeys(5) in order to create keys. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Need Help on ACL

only access to the tree. Currently i dont have any ACL in the slapd.conf file. Would be great if you can share the ACL. Please help. http://www.openldap.org/faq/data/cache/189.html -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Controlling access to users

links on sets http://www.openldap.org/faq/data/cache/1133.html http://www.openldap.org/faq/data/cache/1134.htm -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How can OpenLDAP client process on FreeBSD authenticate a web user with active directory

maintaining or passing passwords on FreeBSD. You may either direct you web application for authentication and authorization to active directory, or uns a ldap proxy to connect to active directory. You may want to read man slapd-ldap(5) for further information. -Dieter -- Dieter Klünter | Systemberatung

Design of assertion control filter

is wrong with this assertion filter? -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Design of assertion control filter

Am Mon, 10 Jun 2013 09:34:50 -0700 schrieb Philip Guenther guenther+ldapt...@sendmail.com: On Mon, 10 Jun 2013, Dieter Klünter wrote: ... Now a search with assertion control allways shows error 122 ldapsearch -YEXTERNAL -e assert='l=Tombstone'-H ldapi:/// -b cn=Billy Kid,ou=tombstone,o

Re: openldap client wasn't able to authenticate SSH

) openiam is the wrong bind passwd rootpw {CLEARTEXT}123456 this should be the correct passwd. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: getting bindDN in perl script

something like my binddn = $ARGV[0]; my bindpw = $ARGV[1]; -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: dynamic group perfs

=myDynamicGroup,o=avci,c=de -s base (objectClass=*) member /dev/null real0m0.300s user0m0.007s sys 0m0.003s -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Need help to configure OpenLDAP!!

*test.ldif* == dn: dc=com,dc=in dc: com objectClass: top objectClass: domain dc=com,dc=in is superior to dc=example,dc=com,dc=in but the server has no knowledge of this dn. [...] -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10

Re: How to configure ubuntu server with LDAP group based authentication

group need only to login. Please let me know is it possible configure it and please update us the steps or any url. I think this is a question you should address to Ubuntu support. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Merge two LDAP store in one proxy with attribute mapping?

? For example, I’ve one LDAP db with my user and an other with my password hash, I would like to try to create a third LDAP access point to get a unified access to both informations. man slapd-meta(5) man slapo-translucent(5) man slapo-rwm(5) -Dieter -- Dieter Klünter | Systemberatung http

Re: Chaining

#000#00modifiersName: cn=manager,o=vinex,c=usmodifyTimestamp: 20130321151250Z You have to enable tls with propper settings in order to perform a simple bind, or disable security settings. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10

Re: Import base64 info

is not UTF-8 but Windows-1252. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Combining AD and Local DB into single 'virtual' tree

into your subschema. Or get some sort of meta directory, there are a few available. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Access questions

Am Tue, 15 Jan 2013 09:43:02 -0800 schrieb Ori Bani orib...@gmail.com: On Mon, Jan 14, 2013 at 10:28 PM, Dieter Klünter die...@dkluenter.de wrote: Am Mon, 14 Jan 2013 21:11:26 -0800 schrieb Ori Bani orib...@gmail.com: Hello, I think I understand that default access for everything

Re: Access questions

Am Tue, 15 Jan 2013 12:49:15 -0800 schrieb Ori Bani orib...@gmail.com: On Tue, Jan 15, 2013 at 11:52 AM, Dieter Klünter die...@dkluenter.de wrote: Am Tue, 15 Jan 2013 09:43:02 -0800 schrieb Ori Bani orib...@gmail.com: On Mon, Jan 14, 2013 at 10:28 PM, Dieter Klünter die

Re: Multi-Master OpenLDAP Replication for 3 nodes -- slapadd command failing

registered* Surely the above message signifies an error? [...] Check wether the modul has been built and is in the defined directory, if not, check wether syncprov has been built in slapd. slapd -VVV will show you all builtin modules. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG

Re: Multi-Master OpenLDAP Replication for 3 nodes -- slapadd command failing

slaptest(8) afterwards. -Dieter On Thu, Dec 27, 2012 at 3:54 AM, Dieter Klünter die...@dkluenter.de wrote: Am Thu, 27 Dec 2012 02:22:18 -0800 schrieb fal patel fal0pa...@gmail.com: Oops -- forgot to enter subject-line! On Thu, Dec 27, 2012 at 2:11 AM, fal patel fal0pa

Re: Forcing TLS encryption

Am Fri, 28 Dec 2012 09:14:51 +0100 (CET) schrieb Wiebe Cazemier wi...@halfgaar.net: - Original Message - From: Dieter Klünter die...@dkluenter.de To: openldap-technical@openldap.org Sent: Thursday, 27 December, 2012 3:53:21 PM Subject: Re: Forcing TLS encryption Am Mon, 24

Re: Multi-Master OpenLDAP Replication for 3 nodes -- slapadd command failing

elapsednone This error is quite clear, cn=config has to be database number 0, that is, the first database declaration must be cn=config. This is probably due to including a slapd.conf file with a database declaration. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key

Re: Forcing TLS encryption

the extended operation ldapSTARTTLS. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: data import very slow for data migration

declarations follow all database declarations, modify slapd.conf accordingly. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How to force password change upon account creation

to create a random password, and second you should define and create a password policy entry that contains all relevant attribute types. See man slapo-ppolicy(5). -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How to find a users last password change date/time

for the modifyTimestamp attribute type, or add a password policy to the system, see man slapo-ppolicy(5). -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: slapd crashes with ch_realloc of X bytes failed

operations and insufficient cache. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: ldif, a person with city and country

classes are not standard track classes but private, you may change the classes from structural to auxiliary. An other question would be, why do you define a attribute type countryCode while there is an attribute type countryName allready in core schema. -Dieter -- Dieter Klünter | Systemberatung

Re: Assertion failed: errno != EDEADLK, file alock.c, line 77

. Remove the alock file in the database directory and restart slapd. By the way, 2.3.5 is rather old, the actual version is 2.4.33. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: DN matching rules

, e.g. dnOneLevelMatch, dnSubtreeMatch, dnSubordinateMatch and dnSuperiorMatch. Please can someone point me to documentation about these matching rules? (Google doesn't seem to bring up much useful). RFC 4517, section 4. -Dieter -- Dieter Klünter | Systemberatung http

Re: DN matching rules

these matching rules? (Google doesn't seem to bring up much useful). RFC 4517, section 4. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: slaptest fails to covnert overlay syncproc?

? Note: Here are the following lines for synprov in my slapd.conf file: You may call slapd -VVV in order to get all statically build in modules. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Logging events to a log file

. Furthermore check your syslog configuration, slapd logs to local4 as default. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Glue slapd-ldap with hdb

namingContext dc=corp,dc=local already served by a preceding hdb database] Version: 2.4.25-1.1ubuntu4.1 Change tho order of the databases, that is primary database last, and declare the ldap database as subordinate. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05

Re: Monitoring using cn=config

=Monitor try ldapsearch -x -H ldap://localhost -b -s base + | grep monitorContext -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: ACL (Regex) help needed

://www.openldap.org/faq/data/cache/1134.html http://www.openldap.org/faq/data/cache/1132.html http://www.openldap.org/faq/data/cache/1133.html -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: LDAP backend filtering

towards the AD to only get back the results matching this filter? man slapo-rwm(5), define a rewrite context based on searchFilter -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: extracting

Am Tue, 15 May 2012 07:28:04 + schrieb Alex Samad - Yieldbroker alex.sa...@yieldbroker.com: I am guessing ldapsearch -x -b base dn for the AD domain how do I get to the schema part.. ldapsearch -x -b -s base (objectclass=*) subschemasubentry -Dieter -- Dieter Klünter

Re: Problem adding sambaGroupMapping

rfc2307bis.schema and nis.schema with regard to objectClass posixGroup. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How to query ldap root DNs ?

://myserver-1:389 -D cn=config -w 'secret' any help is highly appreciated. would this answer your question? ldapsearch -x -H ldap://localhost -b -s base namingContexts configContext -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: ppolicy overlay doesn't apply

@(#) $OpenLDAP: slapd 2.4.26 $ opensuse-buildserv...@opensuse.org Included static overlays: ppolicy syncprov Included static backends: config ldif monitor bdb hdb ldap relay -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key

Re: ACL syntax with wildcards

=example,dc=com write Or any alternative suggestions to achieve the same result? According to slapd.access(5) these are valid acess rules, but you may expand the attribute list to pseudo attribute types entry and children. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key

Re: i don't find slapd.pid

/ and there is not slapd.pid. have you got idea about this? what could i do? run slapd in debugging mode, read man slapd(8) for more information. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Where I can report bugs of OpenLDAP?

Am Sat, 24 Mar 2012 20:46:15 -0700 schrieb Tianyin Xu t...@cs.ucsd.edu: Hi, all, Does anyone know where I can report bugs in OpenLDAP? It seems that OpenLDAP does not have bugzilla. http://www.openldap.org/its/ -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key

Re: Migration of Openldap server from Solaris 8 to 10

-- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: require StartTLS

Am Sun, 26 Feb 2012 12:39:26 +0100 schrieb Daniel Pocock dan...@pocock.com.au: On 26/02/12 12:15, Dieter Klünter wrote: Am Sun, 26 Feb 2012 11:49:14 +0100 schrieb Daniel Pocock dan...@pocock.com.au: Is there some way to ensure that a client who connects on port 389 can do

Re: Controlling access based on group membership

Hi Nick, Am Mon, 20 Feb 2012 23:57:17 +0200 schrieb Nick Milas n...@eurobjects.com: On 20/2/2012 11:14 μμ, Dieter Klünter wrote: The AdminGuide (and slapd.,access(5) clearly say [dnattr=attrname] that is, attribute name is commonName or telephoneNumber, but not an attribute value like

Re: slapd.conf ldap.conf

as file. man slpad.conf(5) moduleload filename Specify the name of a dynamically loadable module to load. In order to recieve more information, run slapd(8) in debugging mode. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: ldapmodify is crashing the slapd process

to generate certificates. But openldap is compiled with libgnutls, thus read on gnuTLS cipher suits http://www.gnu.org/software/gnutls/manual/html_node/Supported-ciphersuites.html -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Chinese characters in mail search causes failed assertion in slapd

and not a bug in OpenLDAP. However with the practicality of using UTF-8 for the mail attribute value is pragmatic. Thoughts? All you could do, is creating a new private attribute type with syntax directory string and configure applications to use this new attribute type. -Dieter -- Dieter

Re: Chinese characters in mail search causes failed assertion in slapd

requires that header fields MUST be composed of printable US-ASCII characters. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Search on whole tree gives result, search on subtree not

could possibly fix it? Consider yout search base. The searched object is in subtree ou=marketing dn: uid=aaa,contractID=2,ou=customers,ou=marketing,o=mycompany uid: aaa while you are search below ou=tc,o=mycompany -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key

Re: Creating a special entry

to create such entry. info links welcome This can be achieved by applying appropriate access rules, man slapd.access(5) While read and compare are documented protocol operations (RFC-4511), browse is an X.500 only operation. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key

Re: Need help to change ldap password from client side

mail passwd: pam_ldap: ldap_modify_s Insufficient [...] This ist not openldap related but question of pam and pam_ldap. Check your /etc/ldap.conf or /etc/pam_ldap.conf -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How to enable monitoring in OpenLdap with cn=config Backend

Am Fri, 20 Jan 2012 21:47:20 +0100 schrieb Axel Birndt towerl...@gmx.de: Am 18.01.2012 12:34, schrieb Dieter Klünter: If there are modules loaded already, modify the apropriate entry: ldapmodify -D xxx -W -Hldap://some.host dn: cn=module{0},cn=config changetype: modify add

Re: How to enable monitoring in OpenLdap with cn=config Backend

Am Tue, 17 Jan 2012 20:37:40 +0100 schrieb Axel Birndt towerl...@gmx.de: Hi Dieter, Am 17.01.2012 08:38, schrieb Dieter Klünter: Is the monitor module loaded at all? If it is not provided as module, run slapd -VVV to see whether it is build in. I put the -VVV option

Re: syncprov_db_open: invalid config, lastmod must be enabled

Am Wed, 18 Jan 2012 09:09:35 +0100 schrieb Angel L. Mateo ama...@um.es: El 17/01/12 11:08, Dieter Klünter escribió: Am Tue, 17 Jan 2012 09:02:04 +0100 schrieb Angel L. Mateoama...@um.es: El 17/01/12 08:30, Dieter Klünter escribió: Am Mon, 16 Jan 2012 20:11:02 +0100 schrieb Angel L

Re: How to enable monitoring in OpenLdap with cn=config Backend

Am Wed, 18 Jan 2012 11:37:21 +0100 schrieb Axel Birndt towerl...@gmx.de: Hi Dieter, Am 18.01.2012 09:09, schrieb Dieter Klünter: abirndt@ubuntunb:/usr/sbin$ sudo ./slapd -VVV @(#) $OpenLDAP: slapd 2.4.21 (Nov 14 2011 20:35:32) $ buildd@vernadsky:/build/buildd/openldap

Re: syncprov_db_open: invalid config, lastmod must be enabled

Am Tue, 17 Jan 2012 09:02:04 +0100 schrieb Angel L. Mateo ama...@um.es: El 17/01/12 08:30, Dieter Klünter escribió: Am Mon, 16 Jan 2012 20:11:02 +0100 schrieb Angel L. Mateoama...@um.es: El 16/01/12 17:04, Howard Chu escribió: The chain overlay has to be configured in the global part

Re: syncprov_db_open: invalid config, lastmod must be enabled

switch) and I can't run slapd. Any idea? I'm running slapd 2.4.21 (ubuntu lucid package) The chain overlay has to be configured in the global part, prior to any database declaration. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53

Re: syncprov_db_open: invalid config, lastmod must be enabled

overlay) this database accepts write operations, so there is no need for chaining. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: The problem of BINDDN/BINDPW in ldap.conf

configuration files using BINDPW for? actually I'm trying to reply the configuration error reported. It is most likely the configuration for nss_ldap, found in /etc/ldap.conf, while openLDAP clients are configured in /etc/openldap/ldap.conf. -Dieter -- Dieter Klünter | Systemberatung http

Re: How to enable monitoring in OpenLdap with cn=config Backend

slapd -VVV to see whether it is build in. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Bind with alternative DN pattern

so. Instead configure olcAuthRegexp accordingly and do a sasl bind. [...] -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How to enable monitoring in OpenLdap with cn=config Backend

information about this? I need the documentation for the cn=config backend. I don't have an slapd.conf! add something like dn: olcdatabase=monitor,cn=config objectclass: olcDatabaseConfig olcDatabase: monitor olcAccess: to dn.subtree=cn=monitor by users read -Dieter -- Dieter Klünter

Re: ACL Problem

your access rules, or just run slapd with -dacl this will show you slapd parsing your access rules. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: OpenLDAP for Central Auth?

-pam. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: ACL question - minimum rights for Apache HTTP Server Bind User

User: cn=bind,ou=technical,ou=user,dc=2axels-company,dc=de to connect to the ldap server and check the group from the user who try to login. I hope my description is understandable... http://www.openldap.org/doc/admin24/access-control.html#Sets -Dieter -- Dieter Klünter | Systemberatung

Re: OpenLDAP reader-only users , and removing anonymous user reading ?

And after i need to make an ACL to authorize my cn=redmine-user to write only a group ou=redmine, but i have no idea to write this. http://www.openldap.org/faq/data/cache/189.html [...] -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10

Re: OpenLDAP reader-only users , and removing anonymous user reading ?

-access(5) for further information. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: Solved: Re: Possible ACL Issue while try to read Root DSE

has to be read by any client, so this should be anonymous readable, same applies to cn=subschema as clients have to know the attribute types and objectclasses available. But nobody should have access to schema database, so remove rule {1} -Dieter -- Dieter Klünter | Systemberatung http

Re: Solved: Re: Possible ACL Issue while try to read Root DSE

Am Thu, 01 Dec 2011 10:26:32 +0100 schrieb Axel Birndt towerl...@gmx.de: Hi Dieter, Am 01.12.2011 09:27, schrieb Dieter Klünter: Am Wed, 30 Nov 2011 22:05:24 +0100 schrieb Axel Birndttowerl...@gmx.de: Is this security conform? Or it is better to allow only authenticated Users

Re: CUCM search

bindmethod=simple binddn=cn=predator,cn=Users,dc=second,dc=crocus,dc=com credentials=XXX mode=none check your suffixmassage rules and compare to the rewritten suffix. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: CUCM search

]: send_ldap_response: msgid=2 tag=101 err=0 Nov 29 22:23:53 despcdarmradtest01 slapd[20876]: conn=1001 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text= [...] The result is, there are no entries found matching your search string. Compare your search criteria to meta search operation. -Dieter -- Dieter Klünter

Re: ldap_search: No such object

design. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: syncrepl provider not working after upgrade to 2.4.26

question... So, any other ideas would be appreciated. [...] Run slapd -VVV in order to get information on all build-in modules. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: howto distribute logs in multiple files

and -l options? you may configure syslog according to your needs. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How to replace account with inetOrgPerson?

of the same superclass chain). This feature of subclassing is termed multiple inheritance. -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E

Re: How Indexes work?

[...] -Dieter -- Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:DA147B05 53°37'09,95N 10°08'02,42E pgpbXdzmywraJ.pgp Description: PGP signature

syncrepl with accesslog not replicating

Hi, I am facing a problem with OpenLDAP-2.4.23. That is I am trying to setup a delta replication based on accesslog. Although the accesslog database contains new entries and the log database is successfully read, no replication ever takes place, while a setup without accesslog replicates

Re: self signed certificate

. You really should create a full certificate chain, that is, a ca, a server certificate and a server key. -Dieter -- Dieter Klünter | Systemberatung sip: 7770...@sipgate.de http://www.dpunkt.de/buecher/2104.html GPG Key ID:8EF7B6C6 pgp5P2b2GWi91.pgp Description: PGP signature

<    1   2   3   4   5