Hello
Fist time trying with openldap
Where is the deal I used an article from LJ to gude me to my first ldap server, but one of the restrictions is giving me problems at startup of the slapd deamon.
I google quite a bit and it does seem to be ok.
here it is the slapd.conf.
Code:
database bdb
suffix "dc=merce,dc=com"
rootdn "cn=mago,dc=merce,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
# rootpw secret
# rootpw {crypt}ijFYNcSNctBYg
rootpw {SSHA}JbhEXhI+tjTT3Wz958GezXi/ey0KRBHL
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory /var/lib/ldap
# Indices to maintain for this database
index objectClass eq,pres
index ou,cn,mail,surname,givenname eq,pres,sub
index uidNumber,gidNumber,loginShell eq,pres
index uid,memberUid eq,pres,sub
index nisMapName,nisMapEntry eq,pres,sub
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
#Users restrictions
access to attrs=userPassword,sambaNTPassword,sambaLMPassword
by dn="cn=mago,dn=merce,dn=com" write
by self write
by anonymous auth
by * none
access to *
by self write
by dn="cn=mago,dn=merce,dn=com" write
by * read
I omited the part that is not relevant, all the includes are there the core, nis, intorgperson, samba, etc....
Now when I startup the slapd deamon it gives me the following error:
Code:
/etc/openldap/slapd.conf: line 100: bad DN "cn=mago,dn=merce,dn=com" in by DN clause
Now the line 100 is the second one of the # Users restrictions
For what I read, it might be a problem with ACL but then again.... Where can I find some detaild info about them?
Thanks a bunch in advance.