|
another one with openldap bad credentials
hi.
i've followed the the guides provided here: howtoforge also this one: roadrunner but when i try to add the users using the command: Code:
ldapadd -x -W -D "cn=Manager,dc=novabase,dc=com" -f passwd.ldifQuote:
this is my ldap.conf Code:
#Code:
include /etc/openldap/schema/corba.schemaCode:
access to attrs=userPasswordQuote:
Code:
slapadd -f slapd.conf -l novabase.com.ldif -vohh and btw instead of starting openldap by doing service slapd start, i've started openldap using Code:
/usr/sbin/slapd -f /etc/openldap/slapd.confi've been racking my brain with this, i've been trying to get this to work but to no avail. |
changed the ldapadd command a bit and added -d 255
so the command now looks like this Code:
ldapadd -x -d 255 -W -D "cn=Manager,dc=novabase,dc=com" -f passwd.ldifQuote:
help would be appreciated thanks in advance |
Hi,
Are you sure about the password? Can you do a search using your credentials? Code:
ldapsearch -x -b "dc=novabase,dc=com" -W -D "cn=Manager,dc=novabase,dc=com" '(objectclass=*)' |
didn't work same error.
i'm going to change the password, add it to slapd.conf and try again. |
changed the password, added it to slapd.conf, did a restart to openldap tried the search and bam...same error.
|
Hi,
This makes me think that you are using the new openldap configuration, that is based on the new cn=config DIT and not in slapd.conf. In that case you need to take a look into slapd.d directory and especially in olcDatabase={1}bdb.ldif, to see the correct credentials (olcRootDN and olcRootPW) You didn't say your distro and how you've install openldap, but you can take a look at this guide guide for Ubuntu. Regards |
i'm sorry about that.
i'm using fedora 12 64 bits, and the ldap version is 2.4.19. i've been looking in the olcDatabase={1}bdb.ldif like you said and olcRootDN is there and has the following. Quote:
can i adjust this to my end, configure dc=my-domain,dc=com directly and add the olcRootPw entry directly and if so do i had it with the hash provided? when i ran the command slapdpasswd? |
I think you should read this (specially post #5)
If slapd finds a directory slapd.d it tries to use the cn=config way to run. So better delete that directory, or use the 1st link I gave you in the previous post to convert slapd.conf into slapd.d Regards |
removed the directory, did what the guy in here did (post 5 like you said).
started openldap using service slapd start gave two warnings. Code:
/var/lib/ldap/objectClass.bdb is not owned by "ldap"issued a query like this Code:
ldapsearch -x -b "dc=novabase,dc=com" -W -D "cn=Manager,dc=novabase,dc=com" '(objectclass=*)'Code:
ldap_bind:Invalid Credentials |
I guess this is your 1st attempt to install openldap, so there is no data yet in the database.
If that's the case, stop slapd, delete everything in /var/lib/ldap/* (exceptDB_CONFIG if you have one) , use slapadd to add the initial ldif and restart slapd. |
database
i believe that the database as something i forgot to mention:
this is the output of slapcat: Quote:
Code:
slapadd -f slapd.conf -l novabase.com.ldif -v |
OK, so you have a slapcat backup of the initial database.
If you delete the databases and the transaction logs in /var/lib/ldap/* you can use again slapadd to restore the novabase.com.ldif Also you have to move the last acls Quote:
|
stopped the ldap, removed the files, created the database again.
changed the slapd.conf now looks like this, leaving the commented part out Code:
include /etc/openldap/schema/corba.schemaCode:
slapadd -f slapd.conf -l novabase.com.ldif -vstarted ldap using service slapd start it gave me the following output: Quote:
Code:
ldapsearch -x -b "dc=novabase,dc=com" -W -D "cn=Manager,dc=novabase,dc=com" '(objectclass=*)' |
I don't see any rootpw.
You can run Code:
slappasswd -s my-passwordCode:
rootpw {SSHA}-some gibberish- |
ups, forgot to paste it...
i've edited it now |
| All times are GMT -5. The time now is 12:16 AM. |