Re: RE24 testing call (OpenLDAP 2.4.36)

On Monday, July 29, 2013 12:44:39 PM Quanah Gibson-Mount wrote: > If you know how to build OpenLDAP manually, and would like to participate > in testing the next set of code for the 2.4.36 release, please do so. > > Generally, get the code for RE24: > >

Re: olcAccess best practices

On Wed, Jul 31, 2013 at 06:11:02PM +, Jancewicz, Russell wrote: > Should I create a single entry per account I want to give access, granting > all attributes they would need read/write access to with a particular filter? No - you will end up having to change the ACLs every time you add a use

Re: separate login/password for several services?

On Thu, Aug 01, 2013 at 10:41:25AM +0300, Zeus Panchenko wrote: > I need to set separate credentials for each service I provide > (optionally) to my users That seems perverse - most of us work hard to *reduce* the number of different usernames and passwords that each person has to use! > I think

Re: adding mail objectClass to schema

On Thu, Aug 01, 2013 at 01:57:14PM -0400, Darouichi, Aziz wrote: > dn: cn=Google,ou=Group,dc=curry,dc=edu > objectclass: groupOfUniqueNames > cn: > mail: > description: > uniqueMember: > uniqueMember: > > > when I try to add the file I get the following error:adding new entry > "cn= > Goo

Re: mdb fixes for 2.4.35?

Quanah Gibson-Mount wrote: > --On Wednesday, July 17, 2013 11:00 PM +0200 Michael Ströder > wrote: > >> Quanah Gibson-Mount wrote: >>> --On Wednesday, July 17, 2013 9:31 PM +0200 Patrick Lists >>> wrote: >>> Thanks Quanah. I saw that the ITS7604.patch is already in openldap.git HEAD. T

Re: OpenLDAP server should use windows certificate store for certificates

Aaron Richton wrote: > On Fri, 2 Aug 2013, pramod kulkarni wrote: > >> Hi,I need information on how to configure OpenLDAP server in the slapd.conf >> to look for certificates from windows certificate store? >> Currently i am using certificates from file in a path. >> >> Waiting for your inputs. >

Re: N-Way Master replication no contextcsn

--On Friday, August 02, 2013 09:54:43 AM -0500 espe...@oreillyauto.com wrote: As a noob upgrading appears to easier said than done. I am running on Ubuntu 10.04 on my master and I have tried to create packages from the code I downloaded from the web site and the install just doesn't work. So

Re: N-Way Master replication no contextcsn

Hi, On Fri, 2 Aug 2013, espe...@oreillyauto.com wrote: Okay so I down loaded tar and followed these instructions. http://www.openldap.org/software/release/install.html It says that everything was okay and I received no errors. I restarted the slapd service and it still shows that it is the

Re: N-Way Master replication no contextcsn

Okay so I down loaded tar and followed these instructions. http://www.openldap.org/software/release/install.html It says that everything was okay and I received no errors. I restarted the slapd service and it still shows that it is the old version. I guess I'm still missing something. Eric Sp

Re: Unique overlay not working, where is the misconfiguration ? [Debian 7 - 2.4.31]

--On Friday, August 02, 2013 4:46 PM +0200 Philippe MARASSE wrote: Le 31/07/2013 20:46, Quanah Gibson-Mount a écrit : --On Wednesday, July 31, 2013 8:26 PM +0200 Michael Ströder wrote: Philippe MARASSE wrote: Le 31/07/2013 09:48, Michael Ströder a écrit : I vaguely remember JNDI using th

RE: Understanding PKI

>From: owner-openssl-us...@openssl.org On Behalf Of Rodney Simioni >Sent: Friday, 21 June, 2013 10:36 >I want to really understand certificates, pki, etc; so forgive me >if these questions are elementary. >Before creating a certificate, I need to generate the CSR on the >actual server where I a

RE: Is my process correct.: openldap using GeoTrust

> From: owner-openssl-us...@openssl.org On Behalf Of Rodney Simioni > Sent: Friday, 21 June, 2013 11:38 > Comments below. > > From: owner-openssl-us...@openssl.org On Behalf Of Dave Thompson > Sent: Thursday, June 20, 2013 6:24 PM > The wildcard.securesites.com.cert you posted 6/19 has > Issuer:

RE: Is my process correct.: openldap using GeoTrust

>From: owner-openssl-us...@openssl.org On Behalf Of Rodney Simioni >Sent: Thursday, 20 June, 2013 12:04 >A key/pair was sent to me from my admin and it looked like it came >from GeoTrust. It's a wildcard cert. A privatekey (which in most formats including openssl's is really a keypair) and a m

Re: Is my process correct.

"openssl verify" does the trick. http://www.openssl.org/docs/apps/verify.html# And to test if the key and the cert belong together: openssl x509 -in $cert -noout -modulus | openssl md5 openssl rsa -in $key -noout -modulus | openssl md5 If the md5 sums don't match, the key or the cert is inval

Re: openldap-technical Digest, Vol 67, Issue 12

It's been awhile since I've messed with this but this sounds like a classic directory chaining or LDAP referral, where the LDAP client does not find the user and automatically refers the client to the directory having the entry. Message: 1 Date: Wed, 12 Jun 2013

LDAP search from Active Directory 2008r2

Hi all,   We are doing LDAP search from our Active Directory, the AD enabled "Require signing" option, please see the attachement.  We can't let it work right now.   I did online google search, LDAP SASL should be the way. But are there any reference or guide to install and configure LDAP SASL?

Re: openldap-technical Digest, Vol 64, Issue 28

Hello Bill, I'm very interesting to know your method to create a debian package. Thanks a lot! Librement, -- Francois Trachez (kiko) Team Fedora|Lyon (France) http://stg.fedoraproject.org/fr/ http://stg.fedoraproject.org/es/ 2013/3/28 : > > --On Tuesday, March 26, 2013 06:14:33 PM -070

Re: openldap-technical Digest, Vol 64, Issue 24

Help me for " LDAP Sync Replication with Active Directory from Openldap side" If any person is willing to help me and require more detail about this problem i will reply that.

RE: Encryption or hash for password?

Hello, Seems to be base64 encoded {crypt} password http://www.openldap.org/faq/data/cache/344.html {crxPt}$1$I0(g7lbc$Zp/rgvZBd0eHöndgh0W3L/ Laurent De : openldap-technical-boun...@openldap.org [mailto:openldap-technical-boun...@openldap.org] De la part de Gerhardus Geldenhuis Envoyé : vend

Re: N-Way Master replication no contextcsn

As a noob upgrading appears to easier said than done. I am running on Ubuntu 10.04 on my master and I have tried to create packages from the code I downloaded from the web site and the install just doesn't work. So I found an RPM and and converted it via alien to a deb file and used dpkg to try a

Re: Unique overlay not working, where is the misconfiguration ? [Debian 7 - 2.4.31]

Le 31/07/2013 20:46, Quanah Gibson-Mount a écrit : --On Wednesday, July 31, 2013 8:26 PM +0200 Michael Ströder wrote: Philippe MARASSE wrote: Le 31/07/2013 09:48, Michael Ströder a écrit : I vaguely remember JNDI using the ManageDSAIT control by default. It seems to be true... I've watched

Re: OpenLDAP server should use windows certificate store for certificates

On Fri, 2 Aug 2013, pramod kulkarni wrote: Hi,I need information on how to configure OpenLDAP server in the slapd.conf to look for certificates from windows certificate store? Currently i am using certificates from file in a path. Waiting for your inputs. In libraries/libldap you'll find tl

OpenLDAP server should use windows certificate store for certificates

Hi, I need information on how to configure OpenLDAP server in the slapd.conf to look for certificates from windows certificate store? Currently i am using certificates from file in a path. Waiting for your inputs. Regards, Pramod