Olivier Nicole [EMAIL PROTECTED] writes:
Hi,
I am implementing a directory with OPENLdap and I woul dlike that
anonymous users could only read ceratin attributes, while all other
attributes are accessible to authenticated users only.
# ACL 1: Data that the user can change and that the
Hi,
as usual, OpenLDAP Project has a booth at Linuxtag Berlin, this year
from Mai 28th to Mai 31st.
http://www.linuxtag.org/2008/en/home/welcome.html
In order to man the exhibition properly we badly need
volunteers. Those who are interested please send a mail to me
privately.
-Dieter
--
Dieter
On Seg, 2008-02-04 at 12:07 -0800, Paul B. Henson wrote:
On Mon, 4 Feb 2008, [iso-8859-1] Michael Ströder wrote:
Paul B. Henson wrote:
Feb 3 03:50:36 derp idmgmt[3722]: error deleting user cjlindsay: DN index
delete failed (LDAP)
Everything right with ownership/permissions on the
On Mon, 4 Feb 2008, Howard Chu wrote:
Paul B. Henson wrote:
...
I took another quick look at the BerkeleyDB documentation on the Oracle
site and did not see anything that seemed relevant to copying databases
between machines. Could I trouble you for a URL to see whether there is
anything in
Hi,
I'm trying to make a system account in LDAP that has multiple
passwords, one of which is time-limited. Basically, it's your run-of-
the-mill posix/shadowAccount object, with your common-or-garden
userPassword attribute. Everything works so far. But now I want to
add a couple of new
On Tuesday 05 February 2008 05:22:09 Paul B. Henson wrote:
There's not much to slapadd, I'm not sure what could have been done
wrong... I did use the -q option (otherwise it takes untractably long), but
there were no errors or interruptions and the database created worked fine
for 10 months
Quanah Gibson-Mount skrev, on 02-02-2008 22:23:
[...]
I mean exactly what I wrote:
RH is not building OpenLDAP for running as a server. RH is building
OpenLDAP for providing client libraries. They spend months testing that
all of the things that link to these libraries work. To
[EMAIL PROTECTED] wrote:
I'm curious: why do all these people who purchased (expensive) RH server
licenses don't open bug reports with Redhat about their openldap
packages?
Quanah Gibson-Mount wrote:
RH is not building OpenLDAP for running as a server.
Also, Red Hat has a conflict of
Hi there,
I'm trying to proxy and cache some ldap queries which would otherwise go
to an
IBM Tivoli Directory Server or another kind of ldap-server.
Therefore I'm trying to use the pcache (proxycache) overlay in openldap
2.3.39.
Is there a problem with that setup so far? Would it need
On Sunday 03 February 2008 09:06:02 Count Of Dracula wrote:
I guess RH does not want to promote OpenLDAP as *the* directory server
or identity management solution. They want to force RHDS for it.
One sign of their inking is FreeIPA project.
http://www.freeipa.org/
I note that with OpenLDAP,
Adrian Overbury wrote:
Hi,
I'm trying to make a system account in LDAP that has multiple passwords,
one of which is time-limited. Basically, it's your run-of-the-mill
posix/shadowAccount object, with your common-or-garden userPassword
attribute. Everything works so far. But now I want to
This thread has gone off-topic and is now closed.
(This list is for discussion of technical issues specific to OpenLDAP
issues.)
-- Kurt, your moderator
Hello,
Thomas Seifert [EMAIL PROTECTED] writes:
Hi there,
I'm trying to proxy and cache some ldap queries which would otherwise
go to an
IBM Tivoli Directory Server or another kind of ldap-server.
Therefore I'm trying to use the pcache (proxycache) overlay in
openldap 2.3.39.
Is there a
Hello,
Adrian Overbury wrote:
[...]
Now, I created the attribute tempPassword, and made it SUP userPassword,
but it doesn't seem to have inherited any of userPassword's
functionality, like the ability to hash the entered string with a given
scheme (like if I entered {SSHA}password I'd end up
Hi Dieter,
thanks for your reply.
Dieter Kluenter schrieb:
Depending on schemas you might have to rewrite attribute types.
ouch, what a fun :(.
I'm having the problem, that I only get back on ldapsearch against the proxy
---
# search result
search: 2
result: 32 No such object
---
[...]
Christian Marg writes:
Since userPassword is a multi-valued attribute, you could simply add a
password just before an operator wants to start a login as
user-session and remove it after a timeout. You'd just have to save the
Password string you set in your service-management software, so you
--On February 5, 2008 1:14:35 PM -0600 Pat Riehecky [EMAIL PROTECTED]
wrote:
Strangely they are not prefixed with the {HASHTYPE}.
When I run
ldappasswd -H ldapi:/// -D cn=testuser,dc=iwu,dc=edu -w Please -x -s
please
In LDAP I get
userPassword:: cGxlYXNl
What did I do?
You failed to
My reading the archives has lead me to believe that DIGEST-MD5 will
require me to store passwords in cleartext. To evaluate the usefulness
of this at my site (little point in storing them cleartext if nothing
can use DIGEST-MD5) I have setup a test server, but the password keeps
getting hashed
I
On Tuesday 05 February 2008 14:14:35 Pat Riehecky imposed structure on a
stream of electrons, yielding:
My reading the archives has lead me to believe that DIGEST-MD5 will
require me to store passwords in cleartext. To evaluate the usefulness
of this at my site (little point in storing them
Thank you!
I am an idiot. (but a happy one!)
Pat
On Tue, 2008-02-05 at 12:08 -0800, Quanah Gibson-Mount wrote:
--On February 5, 2008 1:14:35 PM -0600 Pat Riehecky [EMAIL PROTECTED]
wrote:
Strangely they are not prefixed with the {HASHTYPE}.
When I run
ldappasswd -H ldapi:///
On Mon, 4 Feb 2008, Howard Chu wrote:
Paul's right - assuming the slapadd went well and nothing else was done,
then a binary copy of the DB directory should have worked fine on another
machine.
And it did, for about 10 months :). I can't imagine a problem with the
initial databases wouldn't
On Tue, 5 Feb 2008, Andreas Hasenack wrote:
Yes. Nothing had changed on the server since the upgrade. There were
successful deletes before this one and some successful ones after.
Was your OL 2.3.40 built with the same version of berkeley DB as the
previous 2.3.35 one? (Sorry if you
Thomas Seifert wrote:
Hi there,
I'm trying to proxy and cache some ldap queries which would otherwise go
to an
IBM Tivoli Directory Server or another kind of ldap-server.
Therefore I'm trying to use the pcache (proxycache) overlay in openldap
2.3.39.
Is there a problem with that setup
23 matches
Mail list logo