Why is the default config on Ubuntu 10.4 for LDAP so utterly, inconceivably, and irrecoverably broken? Has anyone managed to successfully enable replication using this messed up slapd.d config? I am pretty sure it is impossible. And the only documentation I could find on it was utterly incorrect.
View 3 Repliesi have successful secure ldap replication but i could not make ldap client to direct its authentication to slave ldap
here is my config file on ldap client (i am not sure if it is the right place though)
ip : 192.168.1.183 is master ldap
ip : 192.168.1.185 is slave ldap
pico /etc/ldap/ldap.conf
#
# LDAP Defaults
code....
i just had to switch from 10 to 11 until 12 comes out, and after setting up asterisk, i noticed VERY VERY BAD sound quality, mostly comprised of severe jittering. I noticed that the way Fedora lets you work with your sound devices in 11 is way different (nicer, but obviously not complete) than ever before, and i am using the same asterisk configs as before, so i'm positive that this is NOT an asterisk issue, and does NOT really belong in this forum; however, only asterisk users will be able to replicate or identify with this issue.
Have any of you 11 users had this happen to you, and if so, did you figure out how to solve it? I'm sure that i can *try* adjusting asterisks jitter buffer settings, but like i said, it was NEVER an issue before 11... Another clue would be that i cannot get crap like gtk-recordmydesktop to produce sound (but that may very well be another issue; however i doubt it)...
I'm running Ubuntu Server 11.04 with OpenSSH, trying to create an ssh tunnel (for web traffic) to it from my (also Ubuntu) laptop. This is the command I'm using to create the tunnel:
Code: ssh -ND localhost:8080 george@192.168.1.20 I had it all working on a virtual machine.. which was deleted What settings/lines do I need to change/add from the default OpenSSH config files to get tunnelling to work? I've Googled and AllowTcpForwarding is set to yes, as is X11Forwarding.. but it still doesn't work. Chrome can connect to the server, but says the connection was closed before any data was sent.
I have a jaunty installation which is working fine, and I'm gradually getting a dual boot of karmic (desktop amd64) up to speed to take over from it. I've got a fairly standard ADSL modem/switch/router connected by wires to the machine as eth0.I setup local static IP etc. during installation (no DHCP at all) and it worked fine for quite a while. Then, after an upgrade one day, DNS broke on reboot.After booting now, /etc/resolv.conf is essentially empty (just comments) but the networking service is up. I can ping places out on the web.If I "/etc/init.d/networking restart" then /etc/resolv.conf gets the correct "nameserver" and "search" lines added to it and everything is fine... until next boot.I never really worked out exactly how Ubuntu controls its networking config, and I'm further confused by the changes to the booting setup in Karmic
View 3 Replies View RelatedI loved dockbarx, but when I tried to install dockbarx-awn (manually) DockBarX and DockBar stopped working. when run from the terminal, the gnome panel reports:
Code:
** (gnome-panel:7882): WARNING **: panel-applet-frame.c:1273: failed to load applet OAFIID:GNOME_DockBarXApplet:
[code]....
My sound card (Soundblaster 24 live! USB) stopped working shortly after upgrading to 10.04. everything was fine until the upgrade as well a immediatly after, so I assume that an update was to blame. If I boot the PC off a live CD, all is well and the sound card works fine.
I've tried running
aplay -l
but it assured me that I do not have a sound card on the system to setup! how I find the broken config file or busted driver?
I recentled upgraded all the packages on my server and now I have an issue where I can't get any thing to install or uninstall do to errors, This is what I get:
praetorian@praetorian:~$ ps ax | grep dpkg
7330 pts/1 Ss+ 0:00 /usr/bin/dpkg --status-fd 21 --configure bind9 cups cups-bsd
7331 pts/1 S+ 0:00 /usr/bin/perl -w /usr/share/debconf/frontend /var/lib/dpkg/info/bind9.postinst configure 1:9.7.3.dfsg-1ubuntu2
[code]....
Is it even possible to use LDAP on Ubuntu 11.04? After a full day of googling, every guide I can find is either for another version of Ubuntu or is horribly broken (including the official docs).
View 2 Replies View RelatedI've been working though [URL] tutorial trying to get openldap working.
When I get to the point where i'm setting up the client. More specifically when I do ldapaddgroup testgroup I am sent this error
"You must have OpenLDAP client commands installed before running these scripts"
I have installed the ldapscripts package along with all the required ones. Has anyone been through this, I imagine it's some little nuance that I am missing.
I've currently got Ubuntu server configured so that clients can login using LDAP user accounts that I've created using ldapadduser (from the ldapscripts package).
I've also got NFS exports working so that /home can be exported to clients. Kerberos authentication is enabled for NFS and clients require a nfs/clienthostname.domain principal to be able to mount the NFS share.
However, I now realise that for LDAP users to be able to access the mount they need their own Kerberos principal. If I run kinit dan@DANBISHOP.ORG then I can access /home/dan as user dan otherwise I get permission denied.
My question then is how best to proceed... is there a way to configure the client/server so that once a client has mounted the nfs share using Kerberos, all users can access it without their own principal?
It seems more usual to create kerberos principles for all users, but then how does one manage users? Using ldapscripts is very easy, but if the admin then has to manually create kerberos principals everytime, it could become very tedious. Furthermore how do users change their password if kerberos is used for authentication?
I need to configure the DNS server and Ldap server in ubunru 10.10.
View 1 Replies View RelatedI've got 8.10 of Ubuntu and currently running openLDAP and have SAMBA domain using this along with the PAM changes on all machines to authenticate the logins.Now I've got a situation where I need to change the organization it currently is dc=mycomp, dc=local and I need to change the "local" part.
I thought that I could slapcat it out then change all dc=local to dc=blech and then reload the LDAP database. Then go around and change all the ldap configuration points to match.I don't think its as simple as change the base dn and everything below that will update.
I've just installed Ubuntu Server for the first time with the goal as setting it up as a proxy server for our Apple computers here since I can get neither ISA of OS X Server's firewall to play properly. So far I have the machine authenticating against our OS X OpenLDAP server and multiple NIC's setup ready to be connected to the outside world. My question is does anyone have a preference on what proxy I should be using? So far my search efforts seem to of turned up Squid Proxy as a favorite among Ubuntu users but I can't seem to work out how to get it authenticating against my OpenLDAP server.
View 5 Replies View RelatedMy scenario is based on Ubuntu server guide, can be found at [URL].. Step 1: I do as chapter 6, install OPENLDAP server, populating LDAP => run ok. Step 2: do as LDAP Authentication section => run ok. Step 3: Install samba => ok. Step 4: do as OpenLDAP Configuration section => there's a problem here: when I run the command:
Quote:
ldapadd -x -D cn=admin,cn=config -W -f /tmp/cn=samba.ldif.I can't login to LDAP server, it said that:
Quote: ldap_bind: Invalid credentials (49)
I am sure that the password is correct, but I still receive this message
Ldapscripts seems to be authenticating oddly but I am not sure why. Running 'ldapadd' works without issue:
<code>root@domainator:~# ldapadd -D cn=root,dc=example,dc=home -W
Enter LDAP Password:
<CTRL-D>
root@domainator:~#
</code>
However:
<code>
root@domainator:~# ldapaddgroup test
>> 01/03/11 - 22:16 : Command : /usr/sbin/ldapaddgroup test
ldap_bind: Invalid credentials (49)
ldap_bind: Invalid credentials (49)
Error adding group test to LDAP
Error adding group test to LDAP
</code>
Here's various parts of my /etc/ldapscripts/ldapscripts.conf:
<code>
SERVER="domainator"
BINDDN="cn=root,dc=example,dc=home"
BINDPWDFILE="/etc/ldapscripts/ldapscripts.passwd"
SUFFIX="dc=example,dc=home" # Global suffix
GSUFFIX="ou=Groups" # Groups ou (just under $SUFFIX)
USUFFIX="ou=Users" # Users ou (just under $SUFFIX)
MSUFFIX="ou=Computers" # Machines ou (just under $SUFFIX)
GIDSTART="10000" # Group ID
UIDSTART="10000" # User ID
MIDSTART="20000" # Machine ID
</code>
/etc/ldapscripts/ldapscripts.passwd permissions are root:root, 0400 a
And I have quadruple checked my password is correct. Is there a way to print out debugging from ldapscripts so I know what commands it is generating?
i am taking another stab at this. The last time i attempted it, it seemed like everyone had a different way to do it, but nobody could give me an answer on how to do it...
I currently have a Domain Controller Running sme server and a domain controller, using ldap as a backend. I have two file servers runing ubuntu 10.04. My overall goal is to have it so when i create a username on the domain controller, it is then automatically copied over to the fileservers. This way everyone will have their own username and password to access the fileservers and ill be able to track what people do on the fileservers.
The next necessity is for me to be able to apply permissions to the folders on the fileserver based on the users that are created on the domain controller.
I have been stuck with this for quite some time now. I have installed ldap and configured it as per instructions fromI am able to query the ldap server without forcing the TLS operation to be successful.But with ldapsearch -d -1 -x -h servername -ZZ -b dc=example,dc=eduI get the error
TLS: peer cert untrusted or revoked (0x42)
TLS: can't connect: (unknown error code).
ldap_err2string
[code]....
I have configured and installed LDAP.in /etc/ldapscripts/ldapscripts.conf I have set:UTEMPLATE="/etc/ldapscripts/ldapadduser.template"File which contains:
dn: uid=<user>,<usuffix>,<suffix>
objectClass: account
objectClass: posixAccount
[code]....
I have a query regarding login to roundcube via dovecot ldap. I have installed and set up the openldap on Ubuntu Server 11.04 with the help of the following article [URL]. I have also installed Postfix, Dovecot, Dovecot-ldap and roundcube as the mail client. Then, I went on to test if I can login through roundcube. I received "login failed". I'm sure the dovecot is running fine as well as Postfix and openLDAP server. All I can find from the log was "auth(default) LDAP: Can't connect to server: localhost".
View 1 Replies View RelatedLDAP Authentication for Web Access I am trying to build a LDAP server to allow access to the wireless network in conjunction with Meraki wireless access points. I am using Ubuntu 10.10 and trying to install OpenLDAP from their documentation but I keep running into the error "configure: error: MozNSS not found - please specify the location to the NSPR and NSS header files in CPPFLAGS and the location to the NSPR and NSS libraries in LDFLAGS (if not in the system location)" I have OpenSSL installed but I also got these when I ran ./configure
checking openssl/ssl.h usability... no
checking openssl/ssl.h presence... no
checking for openssl/ssl.h... no
checking gnutls/gnutls.h usability... no
[code]....
I'm so special. For some reason, when i try to minimalize something... ANYTHING! it dissapears. I'm thinking it had something to do with me messing around with Compiz. I have now deleated Compiz, but the problem continues. The effects i turned on in Compiz are also still working. Is there any way to go back the the Compiz default?
View 2 Replies View RelatedI've been trying to set up a Linux-only network and currently have a working DHCP, DNS, LDAP and NFS server, with a client that can authenticate with the LDAP server and a central /home folder.However, if I wanted to share folders on the NFS server, how would I make the share available to, for example, a particular group of users in the directory?I've never used NIS(+) on a network, but believe you can add a 'group' of users in the /etc/exports file--simples!Does anyone know of the best way to do it (even better anyone who is doing this in a production environment)?
View 5 Replies View RelatedI would like to know whether ldap can be used to authenticate wireless clients with my server.server and clients are connected to a wireless router and i am able to get wireless adapter work in my ubuntu. Is there any anything extra which is required or the openldap server will work for wireless clients?
View 1 Replies View RelatedAny step by step guide for LDAP server & client configuration. From installation.... to.... client login to ldap ubuntu server.
View 2 Replies View RelatedI need to host a user directory and home directors on a Ubuntu 10.04 box. I've installed openLDAP and I can connect a mac to it. how to install the mac schema or add users etc to it. I can view the directory in Workgroup Manager on Mac OS X Server but I also dont know how to set the admin username or password.
View 5 Replies View RelatedI have tomcat installed with port forwarding to http port 80. I configure ldap authentication for apache2(/var/www). But I could not configure tomcat for ldap authentication.
View 1 Replies View RelatedI have installed servers(10.04 LTS Server) with Kerberos + LDAP, now I can ssh to all those servers and login with kerberos principle. But when I want to change password, I got such error:
Code:
Current Kerberos password:
Enter new Kerberos password:
Retype new Kerberos password:
Password change rejected: Password not changed.
Kerberos database constraints violated while trying to change password.
passwd: Authentication token manipulation error
passwd: password unchanged
I have search this issue but cannot any useful information. Would someone give me a direction?
so I got bugzilla up and running (finally) on an ubuntu server...
but in order to use the ldap integration, you need:
Mozilla::LDAP (aka PerLDAP) Perl module
Mozilla/Netscape LDAP SDK
neither of which exist in the repositories, or anywhere on the internet. the best I could find was a request to build a package from over a year ago...
I did find source that I can build... the Perl module builds and starts to begin the setup process -- but I get stuck at the point where it requires the SDK... which I cannot find anywhere in a plain downloadable form. the one I found seems incomplete:
[URL]
Is there any good LDAP-Administration tool ?
I need to setup test accounts and groups.
For that I can test a LDAP-to-DataBase synchronization tool.
Anything with which I can quickly add users /Groups in the directory structure.
I don't care which LDAP-server, as long as it is stable enough to run for 10 minutes.