Re: Bug ? ldap_start_tls_s successful even after removing ca certificate from ca cert dir

2014-08-26 Thread SOMA SEKHAR
Hi , Please let me know if anyone observed this behaviour . On Sat, Aug 23, 2014 at 1:08 PM, SOMA SEKHAR wrote: > link to question on stackoverflow > > > > I'm having trouble verifying th

Re: ldapi:/// without TLS; ldap:// with TLS?

2014-08-26 Thread Philip Guenther
On Tue, 26 Aug 2014, Tom wrote: > I'm running OpenLDAP 2.4 on CentOS. I'm trying to set it up so clients > can use the ldapi:/// socket without TLS, but any clients using ldap:// > must use TLS. > > I believe that the relevant olc variables are olcLocalSSF and > olcSecurity. I can't get it to work

Re: a lot of dnMatch msgs after do_syncrep2

2014-08-26 Thread Daniel Jung
Is throwing it out there, is it possible that because of args loglevel, it created some kind of race condition resulting in something like this? I had been running args on this host to gather some debug for a different issue. This server is not heavily loaded or used, how safe is it to run with arg

Re: How can I add ldap user from linux shell command line?

2014-08-26 Thread Scott Classen
On Aug 25, 2014, at 11:34 PM, Tian Zhiying wrote: > Hi All > > How can I add ldap user from linux shell command line? > And how can I batch add ldap user from linux shell command line? > > Tian Zhiying slapadd? from man slapadd: > Slapadd is used to add entries specified in LDAP Directory

ldapi:/// without TLS; ldap:// with TLS?

2014-08-26 Thread Tom
I'm running OpenLDAP 2.4 on CentOS. I'm trying to set it up so clients can use the ldapi:/// socket without TLS, but any clients using ldap:// must use TLS. I believe that the relevant olc variables are olcLocalSSF and olcSecurity. I can't get it to work - either TLS is required no matter which U

Re: Getting the memberof overlay to work

2014-08-26 Thread Karel Vervaeke
I just found my problem. The values of the member attributes were wrong (ou=Users vs ou=People...). I glanced over the full debug output, but didn't see anything that would have helped here. Are there options to slapd or ldapadd that would have helped to finding the cause faster? Karel On Mon, Au

Antw: How can I add ldap user from linux shell command line?

2014-08-26 Thread Ulrich Windl
slapcat your users to get a reference user. Then convert the reference user to the new user to add. use ldapadd to add the new user via LDIF. Man useradd also suggests it can do it via LDAP: SYNOPSIS useradd [-D binddn] [-P path] [-c comment] [-d homedir] [-e expire] [-f ina