Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to
LinuxQuestions.org , a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free.
Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please
contact us . If you need to reset your password,
click here .
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a
virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month.
Click here for more info.
12-07-2010, 06:31 AM
#16
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
to me that looks OK, but again you need to look at the server logs, not guess from client output. an error 32 says you got in and found nothign though, not that you couldn't get in.
12-07-2010, 07:56 AM
#17
Member
Registered: Jul 2008
Location: Ghent, Belgium
Distribution: Fedora, CentOS
Posts: 690
Original Poster
Rep:
Thank you for your help.
What should be found then ? I think there is nothing to be found, as I still need to create 'something'.
Server logs:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 14:55:04 asterisk16 slapd[12794]:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=8 busy
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: listen=8, new connection on 12
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: added 12r (active) listener=(nil)
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 fd=12 ACCEPT from IP=127.0.0.1:52126 (IP=0.0.0.0:389)
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 14:55:04 asterisk16 slapd[12794]:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 14:55:04 asterisk16 slapd[12794]: 12r
Dec 7 14:55:04 asterisk16 slapd[12794]:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: read active on 12
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 op=0 BIND dn="cn=Manager,dc=domain,dc=local" method=128
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 op=0 BIND dn="cn=Manager,dc=domain,dc=local" mech=SIMPLE ssf=0
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 op=0 RESULT tag=97 err=0 text=
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 14:55:04 asterisk16 slapd[12794]:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 14:55:04 asterisk16 slapd[12794]: 12r
Dec 7 14:55:04 asterisk16 slapd[12794]:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: read active on 12
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: begin get_filter
Dec 7 14:55:04 asterisk16 slapd[12794]: PRESENT
Dec 7 14:55:04 asterisk16 slapd[12794]: end get_filter 0
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 op=1 SRCH base="" scope=2 deref=0 filter="(objectClass=*)"
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 op=1 SEARCH RESULT tag=101 err=32 nentries=0 text=
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 14:55:04 asterisk16 slapd[12794]:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 14:55:04 asterisk16 slapd[12794]: 12r
Dec 7 14:55:04 asterisk16 slapd[12794]:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: read active on 12
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 op=2 UNBIND
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 14:55:04 asterisk16 slapd[12794]:
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 14:55:04 asterisk16 slapd[12794]: daemon: removing 12
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 fd=12 closed
12-07-2010, 08:31 AM
#18
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
I'd be looking for this
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 op=0 BIND dn="cn=Manager,dc=domain,dc=local" mech=SIMPLE ssf=0
Dec 7 14:55:04 asterisk16 slapd[12794]: conn=27 op=0 RESULT tag=97 err=0 text=
you logged in, it worked. Now move on to Luma and check that you see the same things for the SAME account.
12-07-2010, 08:37 AM
#19
Member
Registered: Jul 2008
Location: Ghent, Belgium
Distribution: Fedora, CentOS
Posts: 690
Original Poster
Rep:
Quote:
Originally Posted by
acid_kewpie
you logged in, it worked. Now move on to Luma and check that you see the same things for the SAME account.
Sadly the mailinglist of Luma seems dead... I really don't find how to add an Organizational Unit to dc=domain,dc=local with the user cn=Manager,dc=domain,dc=local.
12-07-2010, 09:02 AM
#20
Member
Registered: Jul 2008
Location: Ghent, Belgium
Distribution: Fedora, CentOS
Posts: 690
Original Poster
Rep:
I'm also trying to use phpLdapAdmin. Here I'm always getting the error :
Bad username or password. Please try again.
Login : cn=Manager,dc=domain,dc=local
Password: guessthis
Logging on ldap-server :
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 busy
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: listen=8, new connection on 12
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: added 12r (active) listener=(nil)
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 fd=12 ACCEPT from IP=127.0.0.1:50221 (IP=0.0.0.0:389)
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]: 12r
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: read active on 12
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=0 BIND dn="cn=Manager,dc=domain,dc=local" method=128
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=0 BIND dn="cn=Manager,dc=domain,dc=local" mech=SIMPLE ssf=0
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=0 RESULT tag=97 err=0 text=
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]: 12r
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: read active on 12
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: begin get_filter
Dec 7 15:59:02 asterisk16 slapd[12794]: PRESENT
Dec 7 15:59:02 asterisk16 slapd[12794]: end get_filter 0
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=1 SRCH attr=namingContexts
Dec 7 15:59:02 asterisk16 slapd[12794]: => test_filter
Dec 7 15:59:02 asterisk16 slapd[12794]: PRESENT
Dec 7 15:59:02 asterisk16 slapd[12794]: <= test_filter 6
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]: 12r
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: read active on 12
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: begin get_filter
Dec 7 15:59:02 asterisk16 slapd[12794]: EQUALITY
Dec 7 15:59:02 asterisk16 slapd[12794]: end get_filter 0
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=2 SRCH base="dc=domain,dc=local" scope=2 deref=0 filter="(uid=cn=manager,dc=voipcenter,dc=local)"
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=2 SRCH attr=dn
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=2 SEARCH RESULT tag=101 err=32 nentries=0 text=
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]: 12r
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: read active on 12
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 op=3 UNBIND
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: removing 12
Dec 7 15:59:02 asterisk16 slapd[12794]: conn=51 fd=12 closed
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on 1 descriptor
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: activity on:
Dec 7 15:59:02 asterisk16 slapd[12794]:
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=7 active_threads=0 tvp=NULL
Dec 7 15:59:02 asterisk16 slapd[12794]: daemon: epoll: listen=8 active_threads=0 tvp=NULL
12-07-2010, 09:51 AM
#21
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
well you ARE binding OK there, so I can't comment on anythign else. I've never used phpldapadmin so don't know if there's anything in there to do differently.
btw, I was looking at phpLdapAdmin and it really seems not suitable for the job of user management. If you are expecting to do convnetional user management I installed gosa this morning, and it seems really good (and alive as a project) compared to other options for specific user management. So far I recommend it.
1 members found this post helpful.
12-07-2010, 10:11 AM
#22
Member
Registered: Jul 2008
Location: Ghent, Belgium
Distribution: Fedora, CentOS
Posts: 690
Original Poster
Rep:
I did not came across gosa yet, but indeed it seems good.
I've managed to get phpldapadmin working, by creating a minimal ldif-file first. I've been stubborn too long.
A real ldap question :
is it possible to tie down a user to one specific OU ? What type do I need to define then: "inetOrgPerson" or "User Account" inside this OU ??
12-07-2010, 12:51 PM
#23
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
I think those questions really lead towards background reading etc. A user is only in one location so only one ou. For now, think of an ou as a directory and a user as a file. That's not accurate really, but covers a basic layout as you'd probably expect to see it. A for how to define the user, for a unix login account it is a posixaccount type you would use ultimately, but that uses inetorgperson and person type. And again if that doesn't make sense, background reading is really the way forwards... Or ignorance if you just want the end result.
12-07-2010, 01:45 PM
#24
Member
Registered: Jul 2008
Location: Ghent, Belgium
Distribution: Fedora, CentOS
Posts: 690
Original Poster
Rep:
I'm a bit confused.
I want to store person + telephone number for different OU's (different departments)
So I would create InetOrgPerson with attribute telephoneNumber in an OU.
But what "objectclass" do I need to use for creating a "user" that may read, edit and add entries within this OU ?
(like I already have "Manager", which is 'organizationalRole')
I see "account", "inetOrgPerson", "organizationalPerson", "organizationalRole", "person", "posixAccount", "residentialPerson", "strongAuthenticationUser", "uidObject".
12-07-2010, 02:37 PM
#25
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
What a use can do to the directory is not about the account but the acls. Remember that and object is just a lump of data, it doesn't mean anything, doesn't do anything. If you go to the bottom of your slapd.conf you can see simple acls (well, mine does) that give you an idea.
12-08-2010, 02:11 AM
#26
Member
Registered: Jul 2008
Location: Ghent, Belgium
Distribution: Fedora, CentOS
Posts: 690
Original Poster
Rep:
I'm following this guide :
http://www.yolinux.com/TUTORIALS/Lin...AP-BindPW.html
It talks about ldap.conf AND adding an objectclass "Person".
Question: can an account, which can get phone number info from a certain OU, be used by multiple LDAP-clients ??
12-08-2010, 02:53 AM
#27
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
an account can be used as many times as you want, no default controls around that sort of thing at all.
12-08-2010, 09:45 AM
#28
Member
Registered: Jul 2008
Location: Ghent, Belgium
Distribution: Fedora, CentOS
Posts: 690
Original Poster
Rep:
I have created an OU : ou=123456,dc=domain,dc=local
with child (inet0rgPerson) : cn=U123456,ou=123456,dc=domain,dc=local
--with attribute "userPassword" = test123456
with child (inet0rgPerson) : cn=Company CC,ou=123456,dc=domain,dc=local
--with attribute telephoneNumber = 1234567890
with child (inet0rgPerson) : cn=Company AA,ou=123456,dc=domain,dc=local
--with attribute telephoneNumber = 9876543210
When I do a search, this is the result :
Code:
[root@asterisk16 ~]# ldapsearch -x -W -D 'cn=U123456,ou=123456,dc=domain,dc=local'
Enter LDAP Password: test123456
# extended LDIF
#
# LDAPv3
# base <> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# search result
search: 2
result: 32 No such object
# numResponses: 1
I would expect the 2 companies...
What does this mean ?
Last edited by jonaskellens; 12-08-2010 at 09:46 AM .
12-08-2010, 12:29 PM
#29
Member
Registered: Jul 2008
Location: Ghent, Belgium
Distribution: Fedora, CentOS
Posts: 690
Original Poster
Rep:
I want to add that making a search with cn=Manager also gives no results :
Code:
[root@asterisk16 ~]# ldapsearch -x -W -D 'cn=Manager,dc=domain,dc=local'
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base <> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# search result
search: 2
result: 32 No such object
# numResponses: 1
12-08-2010, 12:36 PM
#30
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
Well you're getting the same response as before, error 32, meaning the object does not exist, so you've not added the object yet.
All times are GMT -5. The time now is 10:37 AM .
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know .
Latest Threads
LQ News