Re: Does everybody end up writing their own directory management programs?

Right now I think I have a preference to option c. It is no more difficult than orchestrating a local user account using the ansible user module with the added benefit that all of the users are in only one database. It also reduces everything that can go wrong that is ldap related to one file

Re: SASL pass-through fails

I figured out the problem. My krb5.keytab file somehow got corrupted on my OpenLDAP server. I just needed to deleted it and recreate it. I got tipped off to the problem when I started having login issues to the server as well. On 09/18/2016 04:30 AM, Michael Ströder wrote: FWIW: There's a

Re: Enable memberOf

Thanks for the answer Michael!!! My slapd.conf in attach. I followed precisely the tip that you gave me at the link below: http://www.openldap.org/doc/admin24/overlays.html#Reverse%20Group%20Membership%20Maintenance When I run: *ldapsearch -LL -Y EXTERNAL -H ldapi:/// "(uid=test1)" -b

Does everybody end up writing their own directory management programs?

Right now I am trying to weigh my options for maintaining my POSIX accounts on an OpenLDAP tree. I learned today that ldap templates in ldapscripts really don't work, so if I want to go on using ldapscripts, I would have to run ldapmodify after every account is created to get the gecos configured

Re: LTB Dwbian packages [was] Re: Creating suffix aliases with OpenLDAP

2016-09-18 11:29 GMT-04:00 Ralf Mattes : > > Am Sonntag, 18. September 2016 16:55 CEST, Clément OUDOT > schrieb: > > >> >> Hi, >> >> you are right, we did not publish sources as Debian source packages >> and we should do it. >> >> For the moment,

Re: LTB Dwbian packages [was] Re: Creating suffix aliases with OpenLDAP

Am Sonntag, 18. September 2016 16:55 CEST, Clément OUDOT schrieb: > > Hi, > > you are right, we did not publish sources as Debian source packages > and we should do it. > > For the moment, you can get the source files here: >

Re: LTB Dwbian packages [was] Re: Creating suffix aliases with OpenLDAP

Am Sonntag, 18. September 2016 12:22 CEST, Michael Ströder schrieb: > Ralf Mattes wrote: > > > > Am Freitag, 16. September 2016 10:15 CEST, Michael Ströder > > schrieb: > > > > > >> [1] http://ltb-project.org/wiki/documentation/openldap-deb > > > >

Re: LTB Dwbian packages [was] Re: Creating suffix aliases with OpenLDAP

Am Sonntag, 18. September 2016 14:46 CEST, Harry Jede schrieb: > Ralf Mattes wrote: > > Am Freitag, 16. September 2016 10:15 CEST, Michael Ströder > schrieb: > > > [1] http://ltb-project.org/wiki/documentation/openldap-deb > > > > Thanks, but that

Re: SASL pass-through fails

Joshua Schaeffer wrote: > I've been using OpenLDAP and Kerberos for central authentication for a while > now, but I have a couple programs that can't use GSSAPI directly and I want to > setup SASL pass-through authentication to allow those services to use my > Kerberos passwords, but I'm having

Re: LTB Dwbian packages [was} Re: Creating suffix aliases with OpenLDAP

Ralf Mattes wrote: > > Am Freitag, 16. September 2016 10:15 CEST, Michael Ströder > schrieb: > > >> [1] http://ltb-project.org/wiki/documentation/openldap-deb > > Thanks, but that repository dpesn't seem to have sources for jessie. Not true:

Re: Enable memberOf

Elias Pereira wrote: > For a new group that I create, memberof is set automatically, ok? slapo-memberof intercepts write operations to group entries and updates member entries at that time. Note that the member entry must exist of course for this to succeed. Also note that you have to run

LTB Dwbian packages [was} Re: Creating suffix aliases with OpenLDAP

Am Freitag, 16. September 2016 10:15 CEST, Michael Ströder schrieb: > [1] http://ltb-project.org/wiki/documentation/openldap-deb Thanks, but that repository dpesn't seem to have sources for jessie. Looks like I need to go with the Debian Git version. Cheers, Ralf