I want to index my openLDAP database without shutting down or stopping by slapd. Is there a way to do that.
I also have master - slave architecture setuped for the replication.
I am setting up LDAP server, i set slapd.conf(dc=proldap,dc=com) and start ldap it is OK but when i check using ldapsearch -x -b '' -s base '(objectclass=*)' namingContexts result is : namingContexts: dc=my-domain,dc=com
it seems that it did not use my slapd.conf so i tried removing my slapd.conf from /etc/openldap and start slapd again and it did start with no errors. and when i do ldapsearch again still uses dc=my-domain,dc=com
I tried searching about this in google and found no answers,
my reference in setting up ldap is the link below. but it seemed that it always uses another configuration not the one i modified
I'm using Fedora12, ldap version 2.4.19. i installed ldap by yum install url
url
If I do something to the effect of this:ldapsearch -b "dc=example,dc=com" -x -z 3000
I'll get this back at the end of the result set:
# search result
search: 2
result: 4 Size limit exceeded
The thing is is that I have way more (thousands) than what's being displayed here. And I've tried to mess around with /etc/ldap.conf, changing the SIZELIMIT directive to something else, 10000, let's say, and restarting the server, but the same goddamn thing happens.
I've been messing around with this for quite some time now, hopefully someone will be able to shed some light on this so that I can learn my way out of this mess that is LDAP. Also in a related matter, I'm running Mint (based off of Ubuntu), and all the documentation that I've seen (probably read a good 100+ pages in a few days now on this) keeps telling me to make changes to my slapd.conf file. What slapd.conf file? It doesn't exist, I can't find it at least. find / -name slapd.conf turns up nothing.
I try to setup OpenLDAP on Debian Squeeze.But it seems the documentation I found is differed than the installation.
Normally I would expect /etc/ldap/slapd.conf as also mentioned at url.However this file does not exists and I got the feeling Debian changes a lot with the default (bit poor if you asked me).Seems they created a LDAP database and put the config in there, correct me if I am wrong?A folder /etc/ldap/slapd.d is created with some config inside. And also a /etc/ldap/ldap.conf does exist.
Is there any documentation on this, and what if I would like to have a flat config in /etc/ldap/slapd.conf?
Slapd is up and running perfectly well, and I can add and remove entries without a problem. My OS is the Ubuntu based Mint.
So I was hoping for someone to give me a nudge in the right direction for doing this without a slapd.conf file, or directions for how to force slapd to pay attention to a slapd.conf file whose location I specify.
I've tried messing around with /etc/ldap/ldap.conf to no avail, I've tried just putting in a custom slapd.conf file but slapd doesn't pay attention to it.
And to the best of my knowledge I can't find anything written on this specific topic. I can find plenty on slapd.conf's, but that's just taunting me considering I don't even have it on my system.
I am trying to setup LDAP server on Ubuntu 10.04 and am sticking to the old /etc/ldap/slapd.conf file configuration.
I had to comment ldapi:/// from /etc/default/slapd since it was giving 'Address already in use error'. Also had to juggle with pid directory and file issues
After that I was able to start the slapd daemon (service slapd start) but now I am running into multiple issues:
1. Can't stop the service with service slapd stop
Code:
## Service stop returns 0, maybe because start-stop-daemon is not giving error
#service slapd stop
Stopping OpenLDAP: slapd.
# echo $?
0
Will switching to BDB database resolve this ?Also can't I slapcat at non-root user ??
I've compiled openssh-5.4p1 on RHEL 4.8 with Openssl 0.9.8m + pam It works perfect without pam (pam-0.77-66), both with password and public key auth. Whith pam enabled and LDAP (openldap-2.4.21, from scratch) something strange happens: system users: I can do ssh with both password and public key LDAP users: public key works for remote users, still I cannot do ssh with just password. I'm trying a custom PAM configuration, because the default one (even with authconfig + LDAP ) blocks ssh even with system users.
My pam SSHD configuration is:
#%PAM-1.0
auth required pam_env.so
auth sufficient pam_unix.so likeauth nullok
auth sufficient pam_ldap.so use_first_pass
[code]....
My LDAP users are ok: i can do "su - " remote LDAP (so that nss_ldap is OK), also getent passwd and getent group is ok.
am using zabbix open source solution for systems monitoring. I am facing a problem and discussed it on zabbix forum. my post was as "My zabbix server is behaving abnormally, approximately daily from 9 to 12, the server stop accumulating logs. I observed that the server report is RUNNING but it did not accumulate log values and also the machine have no extra load. Its shown in the graph image attached.t the following reply,"database performance?are you monitoring database IO and available database threads? "So any one have any idea that how can I do this as I am using MySQL as backend database on RHEL 3.
View 1 Replies View RelatedI am writing a simple application that will run as user foo (i.e. Ubuntu user foo).However, the application will connect to my database as (database user foobar). IIRC, database users have nothing to do with Linux system users - but I just need to clarify that.So can an app launched to run as user 'foo', connect to a database as user 'foobar'?
View 1 Replies View Relatedok well i installed Ubuntu 10.10 like 2 weeks ago on my computer and I have Spent like A week and a half trying to shut down the X Server. I am trying to install an nvidia driver to my computer... all of the option and ways to do it would be helpfull... any more information needed i will give to you (NVIDIA-Linux-x86-260.19.44.run)
View 3 Replies View RelatedI have some heavy, long processes running on remote Linux machines. I use my laptop to SSH to these machine and run the processes from my couch.
BUT, when I want to shutdown my laptop, I am in trouble since the remote processes are killed.
I did my research and found out that "screen" is a great solution for me, it is! (As long as I don't SHUTDOWN my laptop). Isn't there a way to "persist" the "screen" sessions so I can shut it down and then re-attach to a session?
I am on an Aspire 5315 and i have Backtrack 5,32bit,Gnome (ubuntu)installed with Vista as a dual boot on hdd.I am currently having problem with my laptop overheating and shutting down. In Vista the software Epower controls the fan but in linux I have to install acer_fancontrol and I have installed it as per instructions. It works fine till i reboot and then i get a frozen screen with the BT5 background and in terminal i get 1gear and goes on till 3rdgear without me being able to use BT5.
View 2 Replies View RelatedI'm using Gnome 2.30.2 with Ubuntu 10.4 would like to shut down X Windows properly. Using sudo init 3 from console 1 or a terminal on the Gnome desktop results nothing. There are a bunch of ways of doing accomplishing this that I've seen, but the most recommended methods each cause the same errors. The methods that I've used are sudo service gdm stop, sudo stop gdm && sudo pkill X, and sudo /etc/init.d/gdm stop. After these commands are run I receive the following message: gdm stop/waiting.
Then I switch to console 7 & notice that the screen is frozen & has the following information:
There is a blinking cursor below this message & the terminal does not respond to any command including Ctrl z.
These are the same messages that are normally quickly displayed when linux normally boots.
I disabled the battery power option in & removed other unnecessary startup processes from System, Preferences, Startup Applications. I've tried running the gdm stop commands from terminals 1 & 2 as well as consoles in X Windows & it produces the same results. For some reason though, the gdm commands do work when I used the restart option.
I use Ubuntu server 10.04 I try to install slapd, but i get the following error
Code:
libldap-2.4-2 (= 2.4.21-0buntu5.2) but 2.4.21-0ubuntu5.3 is to be installed
E: Broken packages
And also, when I try to install some other packages such as nagios, squid, .. I get the some list of errors. One of the error say something like
Code:
Failed to fetch http://id.archive.ubuntu.com/ubuntu/pool/main/n/nagios-plugins/nagios-plugins-standard_1.14.14-1ubuntu1_i386.deb Temporary failure resolving 'id.archive.ubuntu.com'
What to do? Should I edit /etc/apt/source.list to point to other repo site?
I was trying to run openldap in /usr/local/libexec on ./slapd command.
As usual, it doesn't respond anything which is normal (side qns: can anyone tell me why ./slapd doesn't even return me a status message?)
Then I went on to check ps -ef | grep slapd, but found that the ./slapd was not in process at all (means its not running). If it ran successfully, it should be in my process.
When I shut down my computer I want to show some pending tasks that I have to do before leaving the office...
I did a local application to manage those tasks, so basically I just want to run a command, and shut down after I kill the app executed.
I have already tried with these options:
/etc/gdm/PostSession/Default --> this works only when I select LogOut option instead Shutdown. /etc/rc0.d/K01mycustomscript --> execute script after X is killed $HOME/.bash_logout --> This looks like does nothing. ./app-to-run && sudo shutdown -h now --> Don't like it for 2 reasons, prompts for sudo password, and can't use my laptop shutdown button.
I am using Ubuntu 10.04.
I dual boot Ubuntu and Windows and sometimes I just want to switch between the partitions without loosing the state of the OS I was currently working with. Currently to do that I just hibernate that OS and, when the computer turns off, I restart it and select the correct partition.
I do not really want to have to press the on button again every time I want to switch between partitions. I figure that there must be a way to make the hibernate action restart instead of shutting down.
How do I make the hibernate action restart instead of shutting down on:
Windows, or Ubuntu
P.S. It is more important to me that I can do this in Ubuntu than Windows (because of the way I use the partitions) therefore if one answer says the Ubuntu way and the other says the Windows way then I will mark the Ubuntu one as the answer and give the Windows one an upvote and a big thankyou.
I am accessing a linux server remotely from my putty. I started the server and now I want to close the command line. when I do cntr+c or cntr+z it kills my server aswell. how will I close my terminal without closing my server? I tried cntr +d but it is not doing anything
View 2 Replies View RelatedWhat is your preferred command for shutting down the system? Please explain your votes.
View 14 Replies View RelatedIm running a Squid with transparent Dansguardian. It seems i cant shut down Dansguardian or else i will get an error message from firefox telling me it cant establish a connection with the proxy server.
View 4 Replies View RelatedCan't install slapd (OpenLDAP) server on my laptop running Ubuntu 10.04 (lucid) Gives broken package error
Code:
sudo apt-get install slapd
Reading package lists... Done
Building dependency tree
Reading state information... Done
[Code].....
Is it possible to set up slapd to authenticate users using a simple name instead of a dn?
View 1 Replies View Relatedi have configured ldapserver on rhel4 for creating address book
following are configuration files on ldap server
/etc/openldap/slapd.conf
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
i am able to import this ldif file into database.also when i perform the ldapsearch on this server with command"ldapsearch �x �W �D �cn=manager, dc=example, dc =com� �b �dc=example, dc=com�" i get correct output.
but when i am trying to search from another client machine, i am getting "error ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)"
also when i configured address book on mozilla on server., it is working fine.but not working on another machine.is any configuration is missing on client machine.both ldap server and client are configured on rhel4es without any firewall or selinux.
I took to yast to install ldap. I creating the CA cert, server key and server cert and specified them during the yast ldap server dialogs.
The firewall is open for ldap.
I also went through yast's ldap client ... though I didn't exactly see to anything (presuably it wrote up a configuration file somewhere).
However when trying use the basic ldap tools, like ldapwhoami. Well it doesn't connect and gives me the above error. Of coure the ldap db is unpopulated as yet, so it probably is not able to say who am at all. But ldapadd doesn't work either.
It seems to point to my SSL usage not being correct .. so I'm trying to double check that now.
i have successful secure ldap replication but i could not make ldap client to direct its authentication to slave ldap
here is my config file on ldap client (i am not sure if it is the right place though)
ip : 192.168.1.183 is master ldap
ip : 192.168.1.185 is slave ldap
pico /etc/ldap/ldap.conf
#
# LDAP Defaults
code....
I installed CentOS 5.2 and then run yum update. I configured this server as LDAP/Samba primary domain controller. LDAP seems to be OK and for testing I am able to create users with:smbldap-tools useradd -am usernameI can ssh into the server as root and also as a Linux user which was locally created in the server. But ssh into the server as LDAP user fails (from a Fedora 11 machine) with "Permission denied, please try again", prompting again for password.Some data:
# rpm -qa | grep ldap
python-ldap-2.2.0-2.1
php-ldap-5.1.6-23.2.el5_3
[code]....
I am using RackMonkey to map out my lab. Unfortunately, due to RM limitations, every user who accesses the site has write access UNLESS they are logged in as a user named "guest". I currently have Apache allowing only the users (sysadmins) in an LDAP group access to RM, but I would like to allow read-only access for other users as well.I found mod_authn_anon, but I am having trouble combining the two authentication methods. I am using Apache 2.2.18 (compiled myself) on SLES 11.1.
This is the common part:
Code:
AuthType Basic
AuthBasicProvider ldap anon
Order allow,deny
Allow from all
This part by itself works for the LDAP authentication:
Code:
AuthName "System Admins"
AuthLDAPURL "ldaps://example.com/ou=ldap,o=example.com?mail" SSL
Require ldap-group cn=SysAdmins,ou=memberlist,ou=groups,o=example.com
This part works by itself for guest access:
Code:
Anonymous guest
Anonymous_VerifyEmail Off
Anonymous_MustGiveEmail Off
Anonymous_LogEmail on
Require valid-user
But if I have both of the previous blocks enabled at once, then guest access does not work. If I throw in a "Satisfy any", then I am not prompted for a username at all. How can I allow access to this LDAP group and to a user named "guest", but not allow all valid LDAP users to log in?
I'm trying to set up a Linux server and I am new to this. I have gone through most of the configuration using SAMBA 3.0 and when I populate the ldap directory all I get this error before the password request:
Then when I perform an ldapsearch to see if the directory is populated I get this message:
I'm positive all my .conf files are done right.
I'm checking with a sniffer and there's activity going on between the client and the LDAP server... as a matter of fact, the sniffer shows that the search is producing one ldap item, however, php says it can't contact the ldap server (after it has bound and everything):
The script is working beautifully on another host with debian.
I am using Fedora12. I installed the following packages:
openldap-servers-2.4.19-1.fc12.x86_64
openldap-clients-2.4.19-1.fc12.x86_64
openldap-2.4.19-1.fc12.x86_64
db4-4.7.25-13.fc12.x86_64
Where should I dig, what I'm doing wrong ?
