Re: adding VLV support to OpenLDAP 2.4.31

Hello Dieter, Thank you for your input. > It seems you have not configured sssvlv, read man slapo-sssvlv(5) and > https://tools.ietf.org/html/draft-ietf-ldapext-ldapv3-vlv-09 I glanced through the IETF document, and see nothing concerning the OpenLDAP SSSVLV configuration. Please advise what sec

Re: adding VLV support to OpenLDAP 2.4.31

Am Wed, 12 Nov 2014 01:02:36 +0200 schrieb Igor Shmukler : > Interestingly, lsof does have the following entry: > slapd 13310 openldap memREG 202,126872 409681 > /usr/lib/ldap/sssvlv-2.4.so.2.8.3 > > Hence, it seems that sssvlv is loaded. At the same time, ldapsearch is >

Re: adding VLV support to OpenLDAP 2.4.31

Interestingly, lsof does have the following entry: slapd 13310 openldap memREG 202,126872 409681 /usr/lib/ldap/sssvlv-2.4.so.2.8.3 Hence, it seems that sssvlv is loaded. At the same time, ldapsearch is telling me "VLV control requires server side sort control" Does this me

Re: adding VLV support to OpenLDAP 2.4.31

--On November 12, 2014 at 12:47:10 AM +0200 Igor Shmukler wrote: Thank you Andrew and Quanah. I appreciate your help. I manually added "olcModuleLoad: {1}sssvlv.la" to the /etc/ldap/slapd.d/cn=config/cn=module{0}.ldif file. For now, it did not do anything. I will re-read the manuals and re

Re: adding VLV support to OpenLDAP 2.4.31

Thank you Andrew and Quanah. I appreciate your help. I manually added "olcModuleLoad: {1}sssvlv.la" to the /etc/ldap/slapd.d/cn=config/cn=module{0}.ldif file. For now, it did not do anything. I will re-read the manuals and resume. It is almost 1 AM in my timezone. To be continued tomorrow. On We

Re: adding VLV support to OpenLDAP 2.4.31

On Tue, Nov 11, 2014 at 11:48:59PM +0200, Igor Shmukler wrote: > Thank you for your answer. I spent quite a lot of time reading various > man pages including the one for slaps.conf(5), of course. > As I mentioned, there is no slapd-config on my system. [How] is it > possible that system is configu

Re: adding VLV support to OpenLDAP 2.4.31

--On November 11, 2014 at 11:48:59 PM +0200 Igor Shmukler wrote: Thank you for your answer. I spent quite a lot of time reading various man pages including the one for slaps.conf(5), of course. As I mentioned, there is no slapd-config on my system. [How] is it possible that system is config

Re: adding VLV support to OpenLDAP 2.4.31

Hello, > a) Do not use Ubuntu's utterly broken build of OpenLDAP, to start with. You > may want to try the builds from the LTB project. > > b) Ubuntu no longer uses the deprecated slapd.conf. It uses the cn=config > database. So you're changes to the slapd.conf (included for reference, not > use

Re: adding VLV support to OpenLDAP 2.4.31

--On November 11, 2014 at 11:05:26 PM +0200 Igor Shmukler wrote: Hello, I apologize if I am posting to the wrong mailing list. I have a simple problem, which I am sure any OpenLDAP administrator can easily solve... I am not an administrator, however. Hence being unable to answer this triv

adding VLV support to OpenLDAP 2.4.31

Hello, I apologize if I am posting to the wrong mailing list. I have a simple problem, which I am sure any OpenLDAP administrator can easily solve... I am not an administrator, however. Hence being unable to answer this trivial question presents a real problem. I am stuck. Any assistance would be

Re: Fwd: interaction of LastBind and Accesslog modules

Quanah Gibson-Mount wrote: > --On November 11, 2014 at 6:39:35 PM +0100 David Tello > wrote: >> I have a old version of OpenLDAP (2.4.10-3), but in few days i will >> actualize this. Do you think that this may be the cause? > > I would strongly advise you upgrade ASAP. You should read over >

Re: Fwd: interaction of LastBind and Accesslog modules

--On November 11, 2014 at 6:39:35 PM +0100 David Tello wrote: Hi Michael, I have a old version of OpenLDAP (2.4.10-3), but in few days i will actualize this. Do you think that this may be the cause? I would strongly advise you upgrade ASAP. You should read over

Re: Fwd: interaction of LastBind and Accesslog modules

Hi Michael, I have a old version of OpenLDAP (2.4.10-3), but in few days i will actualize this. Do you think that this may be the cause? I use overlay lastbind before accesslog, i will change the order to try. Do you have this configuration running correctly? Thanks! On Tue, Nov 11, 2014 at

Re: export directory in LDIF format

On Tue, Nov 11, 2014 at 07:46:19AM -0500, Jerry wrote: > This is the actual code I am using in CRON: > > nice /usr/local/sbin/slapcat -f /usr/local/etc/openldap/slapd.conf -b > "dc=MyDomain,dc=net" -l usr/home/gerard/LDAP_Backup/MyDomain.net.ldif Try running it under 'strace' so you can see wh

Re: Fwd: interaction of LastBind and Accesslog modules

David Tello wrote: > i have a problem with the modules lastbind and access log. Without lastbind > modulo i can to audit the login of users finding the bind entries in the > accesslog database. My problem is that when i active the lastbind module, > this bind entries not appear in access log databa

Re: OpenLDAP Proxy for Active Directory Authentication (slapd.d)

Dan White wrote: On 11/11/14 09:50 +, Šmucr Jan wrote: User wants to authenticate --> Client (Gerrit 2.9.1) connects to the local OpenLDAP server --> The OpenLDAP server searches its local database for a relevant entry * Entry found --> Inform the client * Entry not found -

Re: OpenLDAP Proxy for Active Directory Authentication (slapd.d)

On 11/11/14 09:50 +, Šmucr Jan wrote: User wants to authenticate --> Client (Gerrit 2.9.1) connects to the local OpenLDAP server --> The OpenLDAP server searches its local database for a relevant entry * Entry found --> Inform the client * Entry not found --> Delegate the re

Re: export directory in LDIF format

On Mon, 10 Nov 2014 07:42:44 -0800 Quanah Gibson-Mount wrote: > --On November 10, 2014 at 7:00:58 AM -0500 Jerry > wrote: > > > I have a strange problem exporting my directory into LDIF format. I am > > using the "mdb" format with openldap. > > > > /usr/local/sbin/slapcat -l MyDomain.net.ldif

Fwd: interaction of LastBind and Accesslog modules

i have a problem with the modules lastbind and access log. Without lastbind modulo i can to audit the login of users finding the bind entries in the accesslog database. My problem is that when i active the lastbind module, this bind entries not appear in access log database. Instead appear modify e

Re: How do I say to LDAP to use my configuration instead of the default one?

Abel Guzmán Sánchez wrote: > Hi, I am writing because some time ago I have done some things with LDAP. > But I am unable to make the new versions work (2.4.x). Basically I create > the config file but I am unable to say to LDAP to use it instead of the > default one. You're looking for slapd comma

OpenLDAP Proxy for Active Directory Authentication (slapd.d)

Hello. I need to integrate local OpenLDAP and remote Active directory DS wereas the result is expected to work like this: User wants to authenticate --> Client (Gerrit 2.9.1) connects to the local OpenLDAP server --> The OpenLDAP server searches its local database for a relevant entry *

How do I say to LDAP to use my configuration instead of the default one?

Hi, I am writing because some time ago I have done some things with LDAP. But I am unable to make the new versions work (2.4.x). Basically I create the config file but I am unable to say to LDAP to use it instead of the default one. Is that clear somewhere in the documentation? can anyone help me?