Senhores, boa noite! O HD do meu servidor queimou, estou enfrentando problemas pra colocar meu servidor LDAP no ar novamente. Estou usando FreeBSD 6.1 STABLE com o Openldap-2.3.30 instalado via PORTS. O problema é quando eu tento extrair um LDIF da minha base vem o retorno:
[EMAIL PROTECTED] /usr/ports/distfiles]# slapcat <= entry_decode: slap_str2undef_ad(meudominio,dc=ufsc): AttributeDescription contains inappropriate characters # no data for entry id=01000000 Pela analise que fiz a base parece estar OK pois o BDB consegue extrair estatisticas: [EMAIL PROTECTED] /usr/ports/distfiles]# db_stat-4.4 -m -h /var/db/openldap-data 320MB 740B Total cache size 1 Number of caches 320MB 8KB Pool individual cache size 0 Maximum memory-mapped file size 0 Maximum open file descriptors 0 Maximum sequential buffer writes ................ ................ E o teste de arquivos tambem esta OK: [EMAIL PROTECTED] /usr/ports/distfiles]# slaptest config file testing succeeded Como consequencia deste erro eu nao consigo consultar nada na base e meu servicos estao parados!!! Voces poderiam me dar uma mao nisso? Desde ja agradeço, Douglas PS: Abaixo segue meu slapd.conf. ####################################################### [EMAIL PROTECTED] /usr/local/etc/openldap]# cat slapd.conf # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. ucdata-path /usr/local/share/openldap/ucdata include /usr/local/etc/openldap/schema/core.schema include /usr/local/etc/openldap/schema/cosine.schema include /usr/local/etc/openldap/schema/inetorgperson.schema include /usr/local/etc/openldap/schema/nis.schema include /usr/local/etc/openldap/schema/samba.schema include /usr/local/etc/openldap/schema/qmail.schema include /usr/local/etc/openldap/schema/authldap.schema include /usr/local/etc/openldap/schema/pureftpd.schema include /usr/local/etc/openldap/schema/automount.schema # Define global ACLs to disable default read access. # Do not enable referrals until AFTER you have a working directory # service AND an understanding of referrals. #referral ldap://root.openldap.org pidfile /var/run/openldap/slapd.pid argsfile /var/run/openldap/slapd.args password-hash {CRYPT} password-crypt-salt-format "$1$%8s" schemacheck on # Load dynamic backend modules: modulepath /usr/local/libexec/openldap moduleload back_bdb # moduleload back_ldap # moduleload back_ldbm # moduleload back_passwd # moduleload back_shell # Sample security restrictions # Require integrity protection (prevent hijacking) # Require 112-bit (3DES or better) encryption for updates # Require 63-bit encryption for simple bind # security ssf=1 update_ssf=112 simple_bind=64 # Sample access control policy: # Root DSE: allow anyone to read it # Subschema (sub)entry DSE: allow anyone to read it # Other DSEs: # Allow self write access # Allow authenticated users read access # Allow anonymous users to authenticate # Directives needed to implement policy: # access to dn.base="" by * read # access to dn.base="cn=Subschema" by * read # access to * # by self write # by users read # by anonymous auth # # if no access controls are present, the default policy # allows anyone and everyone to read anything but restricts # updates to rootdn. (e.g., "access to * by * read") # # rootdn can always read and write EVERYTHING! ####################################################################### # BDB database definitions ####################################################################### database bdb #suffix "dc=my-domain,dc=com" #rootdn "cn=Manager,dc=my-domain,dc=com" ## Cleartext passwords, especially for the rootdn, should ## be avoid. See slappasswd(8) and slapd.conf(5) for details. ## Use of strong authentication encouraged. #rootpw secret ## The database directory MUST exist prior to running slapd AND ## should only be accessible by the slapd and slap tools. ## Mode 700 recommended. #directory /var/db/openldap-data ## Indices to maintain #index objectClass eq suffix "dc=meudominio,dc=ufsc,dc=br" rootdn "cn=Manager,dc=meudominio,dc=ufsc,dc=br" # Cleartext passwords, especially for the rootdn, should # be avoid. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw {SSHA}q3cGAGmm43VTPzekpkfgAUxj49hMedxS # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd and slap tools. # Mode 700 recommended. directory /var/db/openldap-data # Indices to maintain index objectClass,uidNumber,gidNumber eq index cn,sn,uid,displayName pres,sub,eq index memberUid,mail,givenname eq,subinitial index sambaSID,sambaPrimaryGroupSID,sambaDomainName eq index default sub index mailAlternateaddress eq #index mail eq index mailMessageStore eq access to attrs=userPassword,sambaLMPassword,sambaNTPassword by self write by anonymous auth by * none access to * by * read #access to attrs=userPassword,sambaLMPassword,sambaNTPassword # by self write # by anonymous auth # by * none access to attrs=userPassword by self +wx by dn="cn=nssldap,ou=DSA,dc=MEUDOMINIO,dc=UFSC,dc=BR" +rsx by anonymous auth access to * by users +xrs by anonymous +xrs ########################################################### ------------------------- Histórico: http://www.fug.com.br/historico/html/freebsd/ Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd