Hoi All,
If have been using bind (and openldap) for a few years. When I first
set-up bind I looked at possibilities for ldap integration and tried
sdb-ldap, but found its response time bad. So instead I have since
used the ldap2zone tool to daily update my zone-files.
Recently I have been looking again and came upon bind-dyndb-ldap. It
looks good, although it does not jet have the complete configuration
set dhcp-ldap has for ics-dhcp.
The last two weeks I have been reading everything I could find.
I have so far:
- added the bind-dyndb-ldap schema to ldap. (marked out the
'dNSdefaultTTL' attribute as it reuses the OID for 'zoneName' in
the dnszone schema which I for now still need)
- converted my old zone-data into a new tree.
- compiled bind-dyndb-ldap-11.1. I run Gentoo, but found an overlay
for 11.0 and changed it for 11.1.
- Updated to bind 9.11.0-p3
- Added:
dyndb DNS-ldap "/usr/lib64/bind/ldap.so" {
uri "ldap://localhost:389";;
base "cn=DNSdyndb, dc=home";
auth_method "simple";
bind_dn "cn=Admin, dc=home";
password "my-secret";
directory "dyn";
verbose_checks yes;
};
and got stuck.
I tried the uri with and without the portnumber, as it says her, as an
IP-number...
For now I use my rootdn, but once working I'll create a dedicated user
with local full rights, as I have with dhcp.
I have looked through configure for bind if I have to enable
something, have tried removing dlz from bind, but time and again it
won't work.
Running named with `-d 10 -g -u named` from the command line got me
some more info but I still do not understand what goes wrong. Let
alone what I have to do.
The above gives me with the leading datetime removed:
`
...
loading DynDB instance 'DNS-ldap'driver '/usr/lib64bind/ldap.so'
bind-dyndb-ldap version 11.1 compiled at 21:34:13 Mar 20 2017,
compiler 4.9.4
registered dynamic ldap driver for DNS-ldap.
adding task 0x7fd80df75010 to syncrepl list; 1 task in list
configuration for dyndb instance 'DNS-ldap' (starting in file
/etc/bind/named.conf on line 44):
auth_method "simple";
base "cn=DNSdyndb, dc=home";
bind_dn "cn=Admin, dc=home";
directory "dyn";
password "????????";
uri "ldap://localhost:389";;
verbose_checks yes;
cannot parse settings for 'named.conf for database DNS-ldap': not
found
LDAP instance 'DNS-ldap' destroyed
...
`
And bind is shut-down???
--
Tot Mails,
bind userlist mailto:hika...@gmail.com
"Zonder hoop kun je niet leven
Zonder leven is er geen hoop
Het eeuwige dilemma
Zeker als je hoop moet vernietigen om te kunnen overleven!"
De lerende Mens
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
