Zoufalstvi jmenem LDAP

wire wiro.wire at gmail.com
Thu May 12 14:49:17 CEST 2011


 No vidno tam ze sa nenastartuje slapd_sasl a v configu nevidim ze by si
mal niekde definovane certifikaty takze ked tak skus aby sa ti to
spustalo bez sifrovania.

Dalsia vec co sa casto dialo, aby ten user pod krotym bezi slapd mal
spravne prava na svoje fajly..

--
Robert

On 05/12/2011 02:35 PM, Vilem Kebrt wrote:
> Ahoj vsem,
> uz 4 dny se tu pokousim presvedcit ldap demona aby se laskave
> nastartoval a ne a ne se podarit.
> Muze me nekdo nakoupnout spravnym smerem ?
> veskere infomace nasleduji.
> Diky moc, ani google mi nepomoh, nasel sem sice par temat ale ani jedno
> neodpovida tomuto chovani :(
> Mimochodem nez zacnete neco o 9.0, tak na 8.2 to delalo to samy v blede
> modrym, upgradoval sem z duvodu hw (8.2 si nerozumelo s radicem, po upg.
> na 9.0 se to stabilizovalo)
> Vilem
>
> /lupus# cat /etc/make.conf/
> CFLAGS= -O2 -fno-strict-aliasing -pipe -msse2 -mmmx -msse -g
> MAKE_SHELL= sh
> CFLAGS+=${BDECFLAGS}
>
> SUP_UPDATE = yes
> SUP=            /usr/bin/csup
> SUPFLAGS=       -g -z -L 2
> SUPHOST=        cvsup.cz.FreeBSD.org
> SUPFILE=        /root/supfiles/cvs-supfile
>
> WITHOUT_X11=yes
> WITHOUT_GUI=yes
> WITHOUT_CUPS=yes
> WITHOUT_SAMBA=yes
> WITHOUT_BLUETOOTH=yes
> WITHOUT_GAMES=yes
> WITHOUT_I4B=yes
> WITHOUT_IPX=yes
> WITHOUT_RCMDS=yes
> WITHOUT_SENDMAIL=yes
>
> WITH_MYSQL_VER=55
> WITH_OPENLDAP_VER=23
> WITH_SASL=yes
>
> APACHE_PORT=www/apache22
>
> # added by use.perl 2011-03-04 17:00:55
> PERL_VERSION=5.10.1
>
> #kernel options
> WITHOUT_MODULES = sound ntfs pccard wlan
>
>
> /lupus# uname -a/
> FreeBSD lupus.viker.cz 9.0-CURRENT FreeBSD 9.0-CURRENT
> root na lupus.viker.cz:/usr/obj/usr/src/sys/LUPUS  amd64
>
>
> --instalace z portu btw.
> /lupus# pkg_info | grep ldap/
> openldap-sasl-client-2.3.43 Open source LDAP client implementation with
> SASL2 support
> openldap-sasl-server-2.3.43 Open source LDAP server implementation
>
> /lupus#/usr/local/etc/rc.d/slapd start/
> Starting slapd.
> /usr/local/etc/rc.d/slapd: WARNING: failed to start slapd
>
> /lupus#/usr/local/libexec/slapd -d -1/
> @(#) $OpenLDAP: slapd 2.3.43 (May 12 2011 13:05:53) $
>        
> root na lupus.viker.cz:/usr/ports/net/openldap23-server/work/openldap-2.3.43/servers/slapd
> daemon_init: <null>
> daemon_init: listen on ldap:///
> daemon_init: 1 listeners to open...
> ldap_url_parse_ext(ldap:///)
> daemon: listener initialized ldap:///
> daemon_init: 2 listeners opened
> slapd init: initiated server.
> slap_sasl_init: server init failed
> slapd destroy: freeing system resources.
> slapd stopped
> connections_destroy: nothing to destroy.
>
> /lupus#cat /usr/local/etc/openldap/slapd.conf/
> include                /usr/local/etc/openldap/schema/core.schema
> include                /usr/local/etc/openldap/schema/inetorgperson.schema
> include                /usr/local/etc/openldap/schema/cosine.schema
>
> pidfile                /var/run/openldap/slapd.pid
> argsfile        /var/run/openldap/slapd.args
>
> modulepath        /usr/local/libexec/openldap
> moduleload        back_bdb
> # moduleload        back_ldap
> # moduleload        back_ldbm
> # moduleload        back_passwd
> # moduleload        back_shell
>
> database        bdb
> suffix                "dc=viker,dc=cz"
> rootdn                "cn=root,dc=viker,dc=cz"
> rootpw                <heslo jsem si dovolil z vypisu vypustit :)>
> # The database directory MUST exist prior to running slapd AND
> # should only be accessible by the slapd and slap tools.
> # Mode 700 recommended.
> directory        /data/databases/ldap/viker.cz
> # Indices to maintain
> index        ui        eq
> index        cn,gn,mail        eq,sub
> index        sn        eq,subpwd
> index        ou        eq
> index        objectClass        eq
> index        default        eq,sub
>
> /lupus# cd /data/databases/ldap
> lupus# ll/
> total 6
> drwxr-xr-x  3 ldap  ldap    512B May 12 13:22 .
> drwxr-xr-x  5 root  wheel   512B May 12 13:22 ..
> drwx------  2 ldap  ldap    512B May 12 13:22 viker.cz
>
>
>
>
>
>
>


More information about the Users-l mailing list