Server :: AutoFS5 LDAP - Searching Multiple DNs
Jan 28, 2011
If there is a way in autofs5 to search for a key in multiple OU's? I am migrating our existing NIS infrastructure to LDAP. Over the years the NIS environment has evolved (not necessarily for the better). I have a back end database and each NIS master extracts specific elements from the DB to create the NIS maps.
On my Linux servers I use a program map that prgramatically searches multiple NIS maps. On Solaris I have an auto.home file that will search auto_home and auto_service ( Home has all home directories associated with people (i.e., in the passwd file) auto_service contain directories that are accessed as /home/.... but are not tied to a user account.
I also have regional data and unfortunately, my back end storage is not consistant so /apps/perl in one region will resolve to regionA:/path1/path2/perl and in another region it may resolve to regionB:/path33/path2/perl. Can this be done?
View 4 Replies
ADVERTISEMENT
Sep 28, 2010
Just installed openldap server on a VM CentOS called 'ldapsrv', it works fine, ldapsearch returns all ldap information.
Installed openldap client on another VM CentOS called 'ldapclient1', configured it with most basic configuration, no ssl/tls etc. but ldapsearch returns error:
ldapsrv is pingable:
Some outputs:
PHP Code:
PHP Code:
View 20 Replies
View Related
May 31, 2010
we have a weird problem with our opensuse 11.2 server installation.
We want to set up a LDAP Server using the Yast-LDAP Server configuriation tool.
This indeed already worked weeks ago until....this week.
Maybe some updates??!
I do not know what happend exactly. The server just does not want to start again and throws following error:
Starting ldap-serverstartproc: exit status of parent of /usr/lib/openldap/slapd: 1 failed
This happend after a little check of the configuration, but without a change, with Yast. Google delivered only "reinstall your box"-answers.
So.. i did that. And now the "mystical" part: The SAME ERROR occurs with a fresh vanilla system with a brand new and simple configuration (certificats, database, pw...the first Yast config dialog...). I did not change the way i set it up.
I remember, when i did this the first time with 11.2 on that machine, when no problems occured...everything was running out of the box (except the "use commen server certificate" option...).
View 4 Replies
View Related
Oct 25, 2010
My script looks really crap and messy, the logic isn't great and I'm not hugely happy with it. Also it echo's $i instead of an actual IP address (line 10). How to improve this. It basically searches through /var/log/messages for multiple FTP hits and when the hit count is higher than a specific number the IP is added to a config file and ftp is restarted. There are some obvious flaws in my script.
Code:
MAXHITS=0
TOPHITS=`grep "FTP session closed." /var/log/messages* | awk '{print $7}' | sed -e 's/^.*[//' -e 's/].*$//' | uniq -c | sort -nr`
HITNUMB=`echo $TOPHITS | awk '{print $1}'`
IPHIT=`echo $TOPHITS | awk '{print$2}'`
HIGHIP=`echo $TOPHITS | grep $HITNUMB | grep $IPHIT | awk '{print $2}'`
if [ $HITNUMB -gt $MAXHITS ]; then
for i in $HIGHIP;
do
echo $i
sed -i '78s/$/,$i/' /opt/etc/proftpd.conf
/root/ftp restart
done
else
echo "not greater than $MAXHITS"
fi
I'm not even sure what will happen if I get multiple responses for my $TOPHITS. It would be cool if it could search for IP's already blacklisted somehow, it might actually be easier to just create a file with a set of blacklisted IP's or something.
View 14 Replies
View Related
Mar 13, 2010
i have configured ldapserver on rhel4 for creating address book
following are configuration files on ldap server
/etc/openldap/slapd.conf
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
i am able to import this ldif file into database.also when i perform the ldapsearch on this server with command"ldapsearch �x �W �D �cn=manager, dc=example, dc =com� �b �dc=example, dc=com�" i get correct output.
but when i am trying to search from another client machine, i am getting "error ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)"
also when i configured address book on mozilla on server., it is working fine.but not working on another machine.is any configuration is missing on client machine.both ldap server and client are configured on rhel4es without any firewall or selinux.
View 3 Replies
View Related
Apr 5, 2010
i have successful secure ldap replication but i could not make ldap client to direct its authentication to slave ldap
here is my config file on ldap client (i am not sure if it is the right place though)
ip : 192.168.1.183 is master ldap
ip : 192.168.1.185 is slave ldap
pico /etc/ldap/ldap.conf
#
# LDAP Defaults
code....
View 11 Replies
View Related
May 25, 2011
I am using RackMonkey to map out my lab. Unfortunately, due to RM limitations, every user who accesses the site has write access UNLESS they are logged in as a user named "guest". I currently have Apache allowing only the users (sysadmins) in an LDAP group access to RM, but I would like to allow read-only access for other users as well.I found mod_authn_anon, but I am having trouble combining the two authentication methods. I am using Apache 2.2.18 (compiled myself) on SLES 11.1.
This is the common part:
Code:
AuthType Basic
AuthBasicProvider ldap anon
Order allow,deny
Allow from all
This part by itself works for the LDAP authentication:
Code:
AuthName "System Admins"
AuthLDAPURL "ldaps://example.com/ou=ldap,o=example.com?mail" SSL
Require ldap-group cn=SysAdmins,ou=memberlist,ou=groups,o=example.com
This part works by itself for guest access:
Code:
Anonymous guest
Anonymous_VerifyEmail Off
Anonymous_MustGiveEmail Off
Anonymous_LogEmail on
Require valid-user
But if I have both of the previous blocks enabled at once, then guest access does not work. If I throw in a "Satisfy any", then I am not prompted for a username at all. How can I allow access to this LDAP group and to a user named "guest", but not allow all valid LDAP users to log in?
View 1 Replies
View Related
May 31, 2010
I'm trying to set up a Linux server and I am new to this. I have gone through most of the configuration using SAMBA 3.0 and when I populate the ldap directory all I get this error before the password request:
Then when I perform an ldapsearch to see if the directory is populated I get this message:
I'm positive all my .conf files are done right.
View 3 Replies
View Related
Nov 28, 2008
I'm checking with a sniffer and there's activity going on between the client and the LDAP server... as a matter of fact, the sniffer shows that the search is producing one ldap item, however, php says it can't contact the ldap server (after it has bound and everything):
The script is working beautifully on another host with debian.
View 7 Replies
View Related
Jun 5, 2011
In the past I found some great help on this forum, so here goes. Bare with me because it's a long story. I'll try to be as complete as possible. I've installed and configured OpenLdap on a virtual machine with ip 192.168.39.134. I've added 2 users via LAM. In the ou WikiUsers and the domain is wiki.local.
I've then created another host with ip 192.168.39.133 with mediawiki installed on it. Then I added the extension LDAPAuthenthication. In the LdapAuthentication file I added this code (only the last paragraph is mine, I added the others to show it's location in the script):
Quote:
$path = array( $IP, "$IP/includes", "$IP/languages" );
set_include_path( implode( PATH_SEPARATOR, $path ) . PATH_SEPARATOR . get_include_path() );
[code]...
I know I'm close because I can't register any new users or accounts on the mediawiki site. Although I could before I added the LDAP service. This is indeed all just to test and get to know how LDAP works. That's why it's all virtual in VMWare. I did not really configure anything on the LDAP, i just installed it and chose a domain (wiki.local).
View 5 Replies
View Related
Jul 13, 2010
can anyone tell me what is the difference between these two files of LDAP client /etc/ldap.conf and /etc/ldap/ldap.conf and for what purposes these two files gives services. Is it necessary to have these two files at a time ?
I use these files to install LDAP client to authenticate with our LDAP server by creating a symbolic link of /etc/ldap.conf to /etc/ldap/ldap.conf.
View 8 Replies
View Related
May 23, 2011
I had a machine that is using ldap, but need to remove it completely.I edited the /etc/nsswitch.conf and removed all references of ldapand renamed /etc/ldap.conf to /etc/ldap.conf.bakI can log in as root, but cannot log in as any user in /etc/passwdIn the /var/log it shows pam_ldap: missing file "/etc/ldap.conf"I am guessing I am missing something else?I never set this machine up for ldap, was here when i got here, so not sure of steps to even put ldap on.
View 2 Replies
View Related
Sep 18, 2010
I am using LDAP to manage the autofs and everything works fine. I have a situation here that I can't figure out how to do. I need to use 2 direct map in auto.master, but the LDAP service doesn't allow me to add 2 "cn: /-" entries in the directory.
The following is my auto.master map:
dn: ou=auto.master,ou=autofs,ou=dolphin,dc=example,dc= com,dc=my
objectClass: automountMap
objectClass: top
ou: auto.master
dn: cn=/-,ou=auto.master,ou=autofs,ou=dolphin,dc=example,dc =com,dc=my
objectClass: automount
objectClass: top
automountInformation: ldap://ldap.example.com.my/ou=auto.iso.indirect,ou=autofs,ou=dolphin,dc=examp le,dc=com,dc=my
cn: /-
I have another ldap entry auto.data.indirect but I have no idea how to inject it into the directory. Any ideas how to implement it? I am using Fedora 13.
View 3 Replies
View Related
Jan 28, 2011
I hope anyone of you can help me build autofs5_5.0.4-3.2_amd64.deb and autofs5-ldap_5.0.3-3_amd64.deb-packages with a modified source for debian testing. The trouble is, the packages from the repositories do not work with our ldap server. I know that using the configure option DISABLE_MOUNT_LOCKING might solve it. But I (a) fail to build the modules and (b) am not sure if I put the compile option in the right place. I dont have much experience with building deb packages, maybe someone can give me a hint.
View 3 Replies
View Related
May 7, 2010
At work we use autofs4, and we also take advangate of the -DOSNMAE=blah and -DOSREL=blah for our automount maps. We're moving some systems to autofs5 and I can't for the life of me figure out how to pass these options properly. There's no 'localoptions' in the init script anymore as there was for autofs4. I've tried adding the flags to the OPTIONS variable in /etc/default/autofs. That adds them to the global autofs process but then nothing in the automounter mounts.
View 3 Replies
View Related
Jun 29, 2011
I am aware that there is a qmail-ldap package to have ldap back end for qmail. But I need only user authentication for qmail through ldap (not the backend; i.e still keeping Mysql as the database). I am pretty new to mail server configuration. I have just configured a (q)mail server (which is currently my sand box) and am able send and receive emails. I am planning to add ldap authentication (just that) to it. Can anyone point me to the right direction?
View 6 Replies
View Related
Aug 11, 2010
I have a database called 'gaming' and with in that database there are several tables and data. I was asked to find a module called 'ako ldap' and disable it (setting it from 1 to 0). My question is how in MySQL do I search for a string if I don't even know what table to search in? I know how to search using the 'select' statement as long as I know where the table data is. In this case I only know which database but nothing more except what I am looking for.
View 1 Replies
View Related
May 12, 2009
I am trying to install OTRS 2.3.4 on an Centos release 5.3 (Final) with Kernel 2.6.18-92.el5xen on an x86_64 with an yum -y update after setup
the problem is when I try to install the perl:GD GD::Text GD::Graph GD::Graph::lines GD::Text::Align
on installing the GD I receive:
Code:
/usr/bin/ld: skipping incompatible /usr/lib/libXpm.so when searching for -lXpm
/usr/bin/ld: cannot find -lXpm
collect2: ld returned 1 exit status
make: *** [blib/arch/auto/GD/GD.so] Error 1
LDS/GD-2.41.tar.gz
code....
View 4 Replies
View Related
Jan 29, 2010
i want to configure an Open LDAP server in Ubuntu....and also want it to connect to its clients, i have two machines for testing,one for client & one for server, i followed the tutorials on ubuntu documentation,but did not succeed in making either the client or the server,
View 2 Replies
View Related
Jan 14, 2010
LDAP is endlessly not working, due to difficulties to simply configure it. I even cannot make the first steps of the installations ... It seems so difficult ... After many howto, wiki, reading, re-reading the errors are still there, always different, and not working.Is there an admin, coming from hell, that made running a LDAP server for sharing the basic configuratin files /var.. /etc... of a working LDAP Server in a tar.gz?
View 18 Replies
View Related
Mar 23, 2010
I am facing login issues when i try to login as admin using phpldapadmin into ldap server. Installed phpldapadmin for administering ldap server from the repository:
1)[url]
2)yum install phpldapadmin
Able to see the default phpldapadmin login page.
ldapadmin throws the error as "Bad username/password.Please try again"
But when i login as anonymous i am able to login but the web page asks whether to create the root domain?
whether anything needs to be done for making it login as admin.
The details of my set up are as follows:
My slapd configuration:
View 7 Replies
View Related
Feb 7, 2011
I'm looking at setting up a couple automated systems: Here are a few examples:
* Internal accounting system to download and process emails
* Public web server to visit
I could put each system on its own separate box -- for example, it's generally good practice to separate anything that external users have access to (such as a webserver) from internal processes such as accounting. Now, rather than dishing out the money for two separate servers, could I get away with just installing new instances of VMWare on the same box for each system?
To give you an idea, these are not large scale computationally sensitive systems. The accounting one is simply downloading and tallying emails, and the latter is just a webserver with maybe 5 hits per day on a good day. I could definitely pick up a new box for say $50, but I wanted to know the general practice of using VMWare on the same box versus two separate boxes.
View 2 Replies
View Related
Sep 26, 2010
I want to Configure Linux LDAP Server for user authentication when my users want to connect to the internet.Also i don't want the user to get the home directory on server. i configured ldap server and ldap client without PAM & SASL.and now with perl i can search in ldap for my client's username & password in ldap.
View 1 Replies
View Related
Mar 4, 2010
I have installed openldap on debian lenny as said here [URL]clients" for both ldap server and ldap client on 192.168.1.192. Now I can make normal ldap successfully but I would like to do secure ldap and replication ldap too. "ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)" here is the error I got stuck with when I follow this link for replication and ssl/tls part[URL]Then I google to find solution and then try these commands
debian:/etc/ldap# ldapsearch -H ldap://192.168.1.192 -b dc=webon -x -d-1
ldap_url_parse_ext(ldap://192.168.1.192)
ldap_create
[code]....
View 7 Replies
View Related
Jul 2, 2010
I took to yast to install ldap. I creating the CA cert, server key and server cert and specified them during the yast ldap server dialogs.
The firewall is open for ldap.
I also went through yast's ldap client ... though I didn't exactly see to anything (presuably it wrote up a configuration file somewhere).
However when trying use the basic ldap tools, like ldapwhoami. Well it doesn't connect and gives me the above error. Of coure the ldap db is unpopulated as yet, so it probably is not able to say who am at all. But ldapadd doesn't work either.
It seems to point to my SSL usage not being correct .. so I'm trying to double check that now.
View 2 Replies
View Related
Sep 8, 2009
I installed CentOS 5.2 and then run yum update. I configured this server as LDAP/Samba primary domain controller. LDAP seems to be OK and for testing I am able to create users with:smbldap-tools useradd -am usernameI can ssh into the server as root and also as a Linux user which was locally created in the server. But ssh into the server as LDAP user fails (from a Fedora 11 machine) with "Permission denied, please try again", prompting again for password.Some data:
# rpm -qa | grep ldap
python-ldap-2.2.0-2.1
php-ldap-5.1.6-23.2.el5_3
[code]....
View 1 Replies
View Related
Jul 11, 2011
I am currently involved in setting up an openldap server on a CentOS platform. I am having some issues with getting it set up to the point that I can remotely manage the server via phpldapadmin in a web browser. I am running into an issue when starting the slapd daemon.
See the output below to better understand:
View 7 Replies
View Related
Jan 11, 2011
How to authenticate Samba server with another LDAP Server.
- I would like to set up samba server(CentOS5 samba version 3.0.33)for sharing directory. WindowXP client will can access to samba if username and password match with username and password of another existing LDAP server.
- I only know URL and DN of LDAP server and can not modify anything on LDAP Server.
- Can I config at samba server for requirement above.
View 2 Replies
View Related
Mar 31, 2011
i want to configure Ldap Server in my network i dont know how to configure it. I dont know how it will work also.
View 1 Replies
View Related
Mar 31, 2011
i want to configure Ldap Server in my network, I don't know how to configure it. I dont know how it will work also.
View 2 Replies
View Related
