I have been running a LDAP with 2.3.x series for awhile now without
the cn=config stuff and I have been looking to add this functionality
into our running setup. So i have read the http://www.openldap.org/
doc/admin23/slapdconf2.html stuff and I am still a bit confused.
I obviously have to
Derek Yarnell wrote:
I have been running a LDAP with 2.3.x series for awhile now without
the cn=config stuff and I have been looking to add this functionality
into our running setup. So i have read the http://www.openldap.org/
doc/admin23/slapdconf2.html stuff and I am still a bit confused.
Howard Chu <[EMAIL PROTECTED]> wrote:
> If you have an existing slapd.conf you can simply let slapd convert it to a
> cn=config database for you.
That's the -F flag, but how does it works? I made little attemps,
without much success.
As I understand, schema replication won't work with syncrepl o
Gavin Henry wrote:
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
If you have an existing slapd.conf you can simply let slapd convert it to a
cn=config database for you.
That's the -F flag, but how does it works? I made little attemps,
without much success.
As I understand, sc
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
If you have an existing slapd.conf you can simply let slapd convert it to a
cn=config database for you.
That's the -F flag, but how does it works? I made little attemps,
without much success.
As I understand, schema replication wo
On Thursday 20 September 2007 05:35:14 Emmanuel Dreyfus wrote:
> Howard Chu <[EMAIL PROTECTED]> wrote:
> > If you have an existing slapd.conf you can simply let slapd convert it to
> > a cn=config database for you.
>
> That's the -F flag, but how does it works? I made little attemps,
> without much
Howard Chu wrote:
Gavin Henry wrote:
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
If you have an existing slapd.conf you can simply let slapd convert
it to a
cn=config database for you.
That's the -F flag, but how does it works? I made little attemps,
without much success.
On Thursday 20 September 2007 16:37:58 Gavin Henry wrote:
> Howard Chu wrote:
> > Note that this feature was already documented in the existing
> > slapd/slapadd/slap* manpages in 2.3. It's a shame that we go to the
> > trouble of writing these docs that nobody actually reads.
>
> We should just wr
Howard Chu <[EMAIL PROTECTED]> wrote:
> Note that this feature was already documented in the existing
> slapd/slapadd/slap* manpages in 2.3. It's a shame that we go to the trouble of
> writing these docs that nobody actually reads.
And it's a sad that project leaders immediatly assume users are
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
Note that this feature was already documented in the existing
slapd/slapadd/slap* manpages in 2.3. It's a shame that we go to the trouble of
writing these docs that nobody actually reads.
And it's a sad that project leaders immedi
Gavin Henry wrote:
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
Note that this feature was already documented in the existing
slapd/slapadd/slap* manpages in 2.3. It's a shame that we go to the trouble of
writing these docs that nobody actually reads.
And it's a sad that pro
And it's a sad that project leaders immediatly assume users are just
unwilling to read the docs, rather than wondering if the docs need
improvement.
I just discovered why my slapd -f slapd.conf -F slapd.d attempt failed:
permissions on the slapd.d directory were wrong, so slapd just start and
qui
People...
I have a idea about OpenLDAP documentation. There´s a good documentation at
OpenLDAP website. Why not create more efforts to create a Howto series? I´m
writing constantlty a howto week´s about basic OpenLDAP features, like some
integrations and hints. We can create something like a wiki,
Howard Chu wrote:
Gavin Henry wrote:
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
Note that this feature was already documented in the existing
slapd/slapadd/slap* manpages in 2.3. It's a shame that we go to the
trouble of
writing these docs that nobody actually reads.
And
Gabriel Stein wrote:
People...
I have a idea about OpenLDAP documentation. There´s a good documentation
at OpenLDAP website. Why not create more efforts to create a Howto
series? I´m writing constantlty a howto week´s about basic OpenLDAP
features, like some integrations and hints. We can cre
Hello I have a recommendation for the idap recommendation, specifically for
a howto. I think a great howto would be one that expands on this:
http://mattfleming.com/node/190 except going into much more detail outlining
every step necessary for it to work. That is a good setup that will give
ldap us
Emmanuel Dreyfus wrote:
Aaron Richton <[EMAIL PROTECTED]> wrote:
This is a concrete case of improvement: "slapd should not be silent on
EACCES (or others)."
Well, it's not silent: it sends an error to the logs.
The oddity here is that there are two functionalities blent into the
same program
Thanks Gavin for your answer. I appreciate this.
Yes, sounds like a good plan. The Admin Guide is a excelent start to the
wiki. On next months, if a have a good howto´s to the wiki, where I can
install wiki and leave the howto´s? There´s a possibility to have private
wiki with contributors at ope
Aaron Richton <[EMAIL PROTECTED]> wrote:
> This is a concrete case of improvement: "slapd should not be silent on
> EACCES (or others)."
Well, it's not silent: it sends an error to the logs.
The oddity here is that there are two functionalities blent into the
same program: the LDAP server and th
Howard Chu <[EMAIL PROTECTED]> wrote:
> Use slaptest instead.
Oh, right, I missed that one. Perhaps this is the missing piece in the
docs? It's not obvious how to explain it, though. I'm not sure the
sentence below is satisfying.
-F slapd-config-directory
Specifies the slapd
Gavin Henry wrote:
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
Use slaptest instead.
Oh, right, I missed that one. Perhaps this is the missing piece in the
docs? It's not obvious how to explain it, though. I'm not sure the
sentence below is satisfying.
-F slapd-confi
On Thursday 20 September 2007 23:45:53 Gavin Henry wrote:
> Gabriel Stein wrote:
> > People...
> >
> > I have a idea about OpenLDAP documentation. There´s a good documentation
> > at OpenLDAP website. Why not create more efforts to create a Howto
> > series? I´m writing constantlty a howto week´s a
On Friday 21 September 2007 09:52:03 Howard Chu wrote:
> Buchan Milne wrote:
> > On Friday 21 September 2007 06:07:47 Howard Chu wrote:
> >> Use slaptest instead.
> >
> > except that slaptest doesn't have a "run as another user" flag, and -u is
> > already taken :-(.
>
> Nor do the tools need such
Buchan Milne wrote:
On Friday 21 September 2007 09:52:03 Howard Chu wrote:
At present, it seems that if you want to do the conversion while slapd is
running, and for a slapd that runs as non-root, something like this is
the best option:
# slapd -u ldap -g ldap -d none -h
ldap://localhost:391/ -
Buchan Milne wrote:
So, from a "what can I do with this software before I decide which one"
perspective, OpenLDAP will be at a disadvantage while we are prevented from
mentioning anything besides OpenLDAP.
Nobody is preventing you from contributing docs about integrating with other
systems to
On Friday 21 September 2007 06:07:47 Howard Chu wrote:
> Emmanuel Dreyfus wrote:
> > Aaron Richton <[EMAIL PROTECTED]> wrote:
> >> This is a concrete case of improvement: "slapd should not be silent on
> >> EACCES (or others)."
> >
> > Well, it's not silent: it sends an error to the logs.
Not if y
On Fri Sep 21 2007 at 00:00:08 CEST, Hex Star wrote:
> howto. I think a great howto would be one that expands on this: http://
> mattfleming.com/node/190 except going into much more detail outlining every
> step necessary for it to work.
Documents such as the one you mention are, apart from quite
I've often thought about this, as Samba do similar at:
http://wiki.samba.org/index.php/Main_Page as do other major OSS projects.
But, then if we look at a page relevant to *this* project, you get something
like:
http://wiki.samba.org/index.php/Samba_%26_LDAP#Setting_up_PAM_and_NSS_to_use_LDAP
Buchan Milne wrote:
On Friday 21 September 2007 06:07:47 Howard Chu wrote:
Use slaptest instead.
except that slaptest doesn't have a "run as another user" flag, and -u is
already taken :-(.
Nor do the tools need such an option; you can just use su. The reason slapd
can't be started with ju
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
Use slaptest instead.
Oh, right, I missed that one. Perhaps this is the missing piece in the
docs? It's not obvious how to explain it, though. I'm not sure the
sentence below is satisfying.
-F slapd-config-directory
Howard Chu <[EMAIL PROTECTED]> wrote:
> You're assuming a back-bdb/hdb database. Not everyone uses them. There are
> quite a large number of installations using just back-ldap/meta etc... The
> slaptest invocation will always work.
Ok, so slaptest is the way to do the conversion. That should be
e
Gavin Henry wrote:
> Gabriel Stein wrote:
>> We can
>> create something like a wiki, using the OpenLDAP documentation and
>> "translate" this things to Howto´s.
>
> I've often thought about this, as Samba do similar at:
> http://wiki.samba.org/index.php/Main_Page as do other major OSS projects.
>
Gabriel Stein wrote:
Thanks Gavin for your answer. I appreciate this.
Not at all.
Yes, sounds like a good plan. The Admin Guide is a excelent start to the
wiki. On next months, if a have a good howto´s to the wiki, where I can
install wiki and leave the howto´s? There´s a possibility to
Michael Ströder wrote:
Gavin Henry wrote:
Gabriel Stein wrote:
We can
create something like a wiki, using the OpenLDAP documentation and
"translate" this things to Howto´s.
I've often thought about this, as Samba do similar at:
http://wiki.samba.org/index.php/Main_Page as do other major OSS pr
Jan-Piet Mens wrote:
On Fri Sep 21 2007 at 00:00:08 CEST, Hex Star wrote:
howto. I think a great howto would be one that expands on this: http://
mattfleming.com/node/190 except going into much more detail outlining every
step necessary for it to work.
Documents such as the one you mention ar
Howard Chu wrote:
Gavin Henry wrote:
Emmanuel Dreyfus wrote:
Howard Chu <[EMAIL PROTECTED]> wrote:
Use slaptest instead.
Oh, right, I missed that one. Perhaps this is the missing piece in the
docs? It's not obvious how to explain it, though. I'm not sure the
sentence below is satisfying.
On Friday 21 September 2007 10:32:04 Howard Chu wrote:
> Buchan Milne wrote:
> > So, from a "what can I do with this software before I decide which one"
> > perspective, OpenLDAP will be at a disadvantage while we are prevented
> > from mentioning anything besides OpenLDAP.
>
> Nobody is preventing
> > > On Friday 21 September 2007 06:07:47 Howard Chu wrote:
> > >> Use slaptest instead.
> > > except that slaptest doesn't have a "run as another user" flag, and -u is
> > > already taken :-(.
I was just working with converting a conf file to a config backend and
swear I saw a specific note some
> >> I've often thought about this, as Samba do similar at:
> >> http://wiki.samba.org/index.php/Main_Page as do other major OSS projects.
> > But, then if we look at a page relevant to *this* project, you get
> > something
> > like:
> > http://wiki.samba.org/index.php/Samba_%26_LDAP#Setting_up_P
People,
I´m really sorry about this discussion. Well, we have a lot of answers about
wiki and 3rd party. I'm agree with OpenLDAP Team about "keep the focus" on
your documentation. Why? Because we have a lot of people when start some
project say "Ok, I participate, I do something", but times after
--On Friday, September 21, 2007 1:27 PM -0300 Gabriel Stein
<[EMAIL PROTECTED]> wrote:
I´m really apreciatte the answers of OpenLDAP Team, and my focus now is
contribute to Admin Guide with Gavin. But, I have some comments about
this question: why not put links about ISC DHCP Integration, Samba
Quanah Gibson-Mount wrote:
--On Friday, September 21, 2007 1:27 PM -0300 Gabriel Stein
<[EMAIL PROTECTED]> wrote:
I´m really apreciatte the answers of OpenLDAP Team, and my focus now is
contribute to Admin Guide with Gavin. But, I have some comments about
this question: why not put links about
Gavin,
A key to good documentation is "don't assume anything". If you
have to ask the question, then it is best to include it in the docos.
>Howard Chu wrote:
> Gavin Henry wrote:
>> Emmanuel Dreyfus wrote:
>>> Howard Chu <[EMAIL PROTECTED]> wrote:
>>>
Use slaptest i
Jan-Piet Mens skrev, on 21-09-2007 08:19:
howto. I think a great howto would be one that expands on this: http://
mattfleming.com/node/190 except going into much more detail outlining every
step necessary for it to work.
Documents such as the one you mention are, apart from quite
good-looking,
Adam Tauno Williams wrote:
I've often thought about this, as Samba do similar at:
http://wiki.samba.org/index.php/Main_Page as do other major OSS projects.
But, then if we look at a page relevant to *this* project, you get something
like:
http://wiki.samba.org/index.php/Samba_%26_LDAP#Setting_u
David Damon wrote:
Gavin,
A key to good documentation is "don't assume anything". If you
have to ask the question, then it is best to include it in the docos.
Thanks for that, but we have to assume some background knowledge ;-)
We're definitely not doing a "Dummies guide to OpenLDA
Gabriel Stein wrote:
People,
I´m really sorry about this discussion. Well, we have a lot of answers
about wiki and 3rd party. I'm agree with OpenLDAP Team about "keep the
focus" on your documentation. Why? Because we have a lot of people when
start some project say "Ok, I participate, I do so
Gavin Henry <[EMAIL PROTECTED]> wrote:
> Thanks for that, but we have to assume some background knowledge ;-)
Then the amount of
--
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
[EMAIL PROTECTED]
Emmanuel Dreyfus <[EMAIL PROTECTED]> wrote:
> > Thanks for that, but we have to assume some background knowledge ;-)
> Then the amount of
Hem, that one was sent too early :-)
What is the amount of assumed knowledge? It would be fair to tell what
are the requirement for reading the doc and where
Ok People.
Just organize this question:
- Gavin finishing the Admin Guide;
- I'm free to put links(3rd party) at FAQ and update it when have some
change(its a good idea about RSS);
- Gavin, you are accepting contributions to finish Admin Guide;
- And finally... the main concept is RTFM and not m
Emmanuel Dreyfus wrote:
Emmanuel Dreyfus <[EMAIL PROTECTED]> wrote:
Thanks for that, but we have to assume some background knowledge ;-)
Then the amount of
Hem, that one was sent too early :-)
What is the amount of assumed knowledge? It would be fair to tell what
are the requirement for rea
>Gavin wrote:
>David Damon wrote:
>>
>> Gavin,
>> A key to good documentation is "don't assume anything". If you
>> have to ask the question, then it is best to include it in the docos.
>>
>
>Thanks for that, but we have to assume some background knowledge ;-)
>We're definitely not doin
Howard Chu wrote:
>Emmanuel Dreyfus wrote:
>> Emmanuel Dreyfus <[EMAIL PROTECTED]> wrote:
>>
Thanks for that, but we have to assume some background knowledge ;-)
>>> Then the amount of
>>
>> Hem, that one was sent too early :-)
>>
>> What is the amount of assumed knowledge? It would be fai
David Damon wrote:
Howard Chu wrote:
>Emmanuel Dreyfus wrote:
>> Emmanuel Dreyfus <[EMAIL PROTECTED]> wrote:
>>
Thanks for that, but we have to assume some background knowledge ;-)
>>> Then the amount of
>>
>> Hem, that one was sent too early :-)
>>
>> What is the amount of assumed
Howard Chu skrev, on 21-09-2007 21:58:
What is the amount of assumed knowledge? It would be fair to tell what
are the requirement for reading the doc and where they can be
acquired...
From the Project's perspective, I think the basic requirements include:
basic sysadmin skills on your tar
> Ok People.
>
> Just organize this question:
>
> - Gavin finishing the Admin Guide;
Correct. As well as anyone via ITS and OpenLDAP team.
> - I'm free to put links(3rd party) at FAQ and update it when have some
> change(its a good idea about RSS);
OK, sounds good.
> - Gavin, you are acceptin
Gavin Henry <[EMAIL PROTECTED]> writes:
> I'd love to also see, "It would be really helpful if x, y and x was
> covered".
Ask and you shall receive. It would be really helpful if the slapd.access
man page said something more useful than:
The statement set= is undocumented yet.
--
Russ A
57 matches
Mail list logo
