Hi,
I am facing login issues when i try to login as admin using phpldapadmin into ldap server.
Installed phpldapadmin for administering ldap server from the repository:
1)
http://download.fedora.redhat.com/pu...5.3.noarch.rpm
2)yum install phpldapadmin
Able to see the default phpldapadmin login page.
Login procedure
login: <rootdn>
password: <rootpw>
ldapadmin throws the error as "Bad username/password.Please try again"
But when i login as anonymous i am able to login but the web page asks whether to create the root domain?
kindly do suggest whether anything needs to be done for making it login as admin.
Thanks.
navin
The details of my set up are as follows:
Linux Distribution: RedHat 5.3 Enterprise Client.
Openldap version: $OpenLDAP: slapd 2.3.43 (Nov 6 2008 02:53:24) $
brewbuilder@hs20-bc1-5.build.redhat.com:/builddir/build/BUILD/openldap-2.3.43/openldap-2.3.43/build-servers/servers/slapd
My slapd configuration:
#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/dnszone.schema
include /etc/openldap/schema/auth.schema
# Allow LDAPv2 client connections. This is NOT the default.
allow bind_v2
# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral ldap://root.openldap.org
pidfile /var/run/openldap/slapd.pid
argsfile /var/run/openldap/slapd.args
access to dn.base="" by * read
access to dn.base="cn=Subschema" by * read
access to *
by self write
by users read
by anonymous auth
#######################################################################
# ldbm and/or bdb database definitions
#######################################################################
database bdb
suffix "dc=intoto,dc=com"
rootdn "cn=Manager,dc=intoto,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw secret
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory /var/lib/ldap
# Indices to maintain for this database
index objectClass eq,pres
index ou,cn,mail,surname,givenname eq,pres,sub
index uidNumber,gidNumber,loginShell eq,pres
index uid,memberUid eq,pres,sub
index nisMapName,nisMapEntry eq,pres,sub
-----------------------------
Log of slapd when started in debug mode ([b22318@112mc77 openldap]$ sudo /usr/sbin/slapd -d 16783 -f slapd.conf)
slapd startup: initiated.
backend_startup_one: starting "cn=config"
config_back_db_open
config_build_entry: "cn=config"
config_build_entry: "cn=include{0}"
config_build_entry: "cn=include{1}"
config_build_entry: "cn=include{2}"
config_build_entry: "cn=include{3}"
config_build_entry: "cn=include{4}"
config_build_entry: "cn=include{5}"
config_build_entry: "cn=schema"
config_build_entry: "cn={0}core"
config_build_entry: "cn={1}cosine"
config_build_entry: "cn={2}inetorgperson"
config_build_entry: "cn={3}nis"
config_build_entry: "cn={4}dnszone"
config_build_entry: "cn={5}auth"
config_build_entry: "olcDatabase={-1}frontend"
config_build_entry: "olcDatabase={0}config"
config_build_entry: "olcDatabase={1}bdb"
backend_startup_one: starting "dc=intoto,dc=com"
bdb_db_open: dc=intoto,dc=com
bdb_db_open: Warning - No DB_CONFIG file found in directory /var/lib/ldap: (2)
Expect poor performance for suffix dc=intoto,dc=com.
bdb_db_open: dbenv_open(/var/lib/ldap)
slapd starting
daemon: added 4r listener=(nil)
daemon: added 7r listener=0x2ada7bdbc6b0
daemon: epoll: listen=7 active_threads=0 tvp=NULL
....
....
<= send_search_entry: conn 0 exit.
send_ldap_result: conn=0 op=6 p=3
send_ldap_result: err=0 matched="" text=""
send_ldap_response: msgid=7 tag=101 err=0
ber_flush: 14 bytes to sd 11
0000: 30 0c 02 01 07 65 07 0a 01 00 04 00 04 00 0....e........
ldap_write: want=14, written=14
0000: 30 0c 02 01 07 65 07 0a 01 00 04 00 04 00 0....e........
conn=0 op=6 SEARCH RESULT tag=101 err=0 nentries=1 text=
daemon: activity on 1 descriptor
daemon: activity on: 11r
daemon: read active on 11
connection_get(11)
connection_get(11): got connid=0
connection_read(11): checking for input on id=0
ber_get_next
ldap_read: want=8, got=8
0000: 30 50 02 01 08 63 4b 04 0P...cK.
ldap_read: want=74, got=74
0000: 10 64 63 3d 69 6e 74 6f 74 6f 2c 64 63 3d 63 6f .dc=intoto,dc=co
0010: 6d 0a 01 02 0a 01 00 02 01 00 02 01 00 01 01 00 m...............
0020: a3 22 04 03 75 69 64 04 1b 63 6e 3d 4d 61 6e 61 ."..uid..cn=Mana
0030: 67 65 72 2c 64 63 3d 69 6e 74 6f 74 6f 2c 64 63 ger,dc=intoto,dc
0040: 3d 63 6f 6d 30 04 04 02 64 6e =com0...dn
ber_get_next: tag 0x30 len 80 contents:
ber_get_next
ldap_read: want=8 error=Resource temporarily unavailable
daemon: epoll: listen=7 active_threads=0 tvp=NULL
do_search
ber_scanf fmt ({miiiib) ber:
>>> dnPrettyNormal: <dc=intoto,dc=com>
=> ldap_bv2dn(dc=intoto,dc=com,0)
<= ldap_bv2dn(dc=intoto,dc=com)=0
=> ldap_dn2bv(272)
<= ldap_dn2bv(dc=intoto,dc=com)=0
=> ldap_dn2bv(272)
<= ldap_dn2bv(dc=intoto,dc=com)=0
<<< dnPrettyNormal: <dc=intoto,dc=com>, <dc=intoto,dc=com>
SRCH "dc=intoto,dc=com" 2 0 0 0 0
ber_scanf fmt ({mm}) ber:
filter: (uid=cn=manager,dc=intoto,dc=com)
ber_scanf fmt ({M}}) ber:
attrs: dn
conn=0 op=7 SRCH base="dc=intoto,dc=com" scope=2 deref=0 filter="(uid=cn=manager,dc=intoto,dc=com)"
conn=0 op=7 SRCH attr=dn
==> limits_get: conn=0 op=7 dn="[anonymous]"
=> bdb_search
bdb_dn2entry("dc=intoto,dc=com")
search_candidates: base="dc=intoto,dc=com" (0x00000001) scope=2
=> bdb_dn2idl("dc=intoto,dc=com")
=> bdb_equality_candidates (objectClass)
=> key_read
bdb_idl_fetch_key: [b49d1940]
<= bdb_index_read: failed (-30989)
<= bdb_equality_candidates: id=0, first=0, last=0
=> bdb_equality_candidates (uid)
=> key_read
bdb_idl_fetch_key: [40ee0fca]
<= bdb_index_read: failed (-30989)
<= bdb_equality_candidates: id=0, first=0, last=0
bdb_search_candidates: id=0 first=1 last=0
bdb_search: no candidates
send_ldap_result: conn=0 op=7 p=3
send_ldap_result: err=0 matched="" text=""
send_ldap_response: msgid=8 tag=101 err=0
ber_flush: 14 bytes to sd 11
0000: 30 0c 02 01 08 65 07 0a 01 00 04 00 04 00 0....e........
ldap_write: want=14, written=14
0000: 30 0c 02 01 08 65 07 0a 01 00 04 00 04 00 0....e........
conn=0 op=7 SEARCH RESULT tag=101 err=0 nentries=0 text=
daemon: activity on 1 descriptor
daemon: activity on: 11r
daemon: read active on 11
connection_get(11)
connection_get(11): got connid=0
connection_read(11): checking for input on id=0
ber_get_next
ldap_read: want=8, got=7
0000: 30 05 02 01 09 42 00 0....B.
ber_get_next: tag 0x30 len 5 contents:
ber_get_next
ldap_read: want=8 error=Resource temporarily unavailable
daemon: epoll: listen=7 active_threads=0 tvp=NULL
do_unbind
conn=0 op=8 UNBIND
connection_closing: readying conn=0 sd=11 for close
connection_resched: attempting closing conn=0 sd=11
connection_close: conn=0 sd=11
daemon: removing 11
conn=0 fd=11 closed
daemon: activity on 1 descriptor
daemon: activity on:
daemon: epoll: listen=7 active_threads=0 tvp=NULL