LinuxQuestions.org
Did you know LQ has a Linux Hardware Compatibility List?
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 08-25-2011, 09:07 PM   #1
sheelavantar
Member
 
Registered: Aug 2010
Posts: 69

Rep: Reputation: 1
Unhappy LDAP Server Bind Failed


Hello Friends,
I have fedora 10 installed on 2 machines. I have installed open LDAP server 2.4.26 on one machine and pam_ldap-186 on another

machine.

I have configured the server and added some entries to it. when I do ldapsearch it shows the entries. But when I send LDAP request

from my client machine (pam_ldap) the request packet is reaching the server machine but not "slapd" server process.

The configurations done are as follows.

/usr/local/etc/openldap/slapd.conf

include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema

pidfile /usr/local/var/run/slapd.pid
argsfile /usr/local/var/run/slapd.args

allow bind_v2
access to * by * read

database bdb
suffix "dc=samsung,dc=com"
rootdn "cn=Manager,dc=example,dc=com"

rootpw 123qwe
directory /usr/local/var/openldap-data
index uid eq
index cn,gn,sn,ou,o,mail eq,sub
index objectClass eq


/etc/ldap.conf

host 10.1.1.5
base dc=example,dc=com
bind_policy hard



The error which i am getting is as below.

Aug 26 09:40:27 localhost sshd[9512]: pam_ldap: ldap_simple_bind Can't contact LDAP server
Aug 26 09:40:27 localhost sshd[9512]: pam_ldap: reconnecting to LDAP server...
Aug 26 09:40:27 localhost sshd[9512]: pam_ldap: ldap_simple_bind Can't contact LDAP server



When I checked the default port binding with netstat on the server machine the result is as below.

[root@localhost slapd]# netstat -tuan | grep 389
tcp 0 0 0.0.0.0:389 0.0.0.0:* LISTEN
tcp 0 0 :::389 :::* LISTEN
[root@localhost slapd]#

The slapd is running on 0.0.0.0 IP. is this a problem? why it is not accepting packets sent on eth0 (10.1.1.5) ??


Please let me know how to fix this problem.

Thanks and Regards,
Vijay S.
 
Old 08-26-2011, 02:32 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,397

Rep: Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963
Can you telnet to that port? Jumping straight to Pam is far too quick. You should be doing ldapsearch commands first. I would guess at an iptables rule personally.
 
Old 08-26-2011, 03:52 AM   #3
sheelavantar
Member
 
Registered: Aug 2010
Posts: 69

Original Poster
Rep: Reputation: 1
Yes Chris, you are right.
Thanks for your reply.

It was problem with IP tables, I cleared the ip tables using "iptables -F" and now the packets are reaching my slapd.

Thank you.
Vijay.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
samba 3.5 failed to bind to ldap server invalid credentials mercxi Linux - Server 1 07-28-2010 04:58 PM
Failed to bind - LDAP client internal error on Centos 5.x hesam-1 Linux - Software 1 03-15-2010 07:49 AM
Postfix and Ldap: Unable to bind to server linuxpyro Linux - Server 7 12-09-2008 11:07 PM
samba failed to bind with ldap emilsicad Linux - Newbie 1 11-26-2008 09:46 AM
bind to LDAP failed (squirrel mail plugin ch_ldap passwd) johnyquest743 Linux - Enterprise 0 06-24-2007 11:40 AM


All times are GMT -5. The time now is 01:26 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration