Ubuntu Servers :: OpenLDAP Possibly Starting Too Late?
Apr 12, 2011
I recently followed a tutorial on how to get OpenLDAP running with Samba on Lucid. It worked pretty well.Here's my very frustrating problem with it. For the first 5 - 10 minutes after rebooting, password handling (possibly PAM?) is hosed, including for users in LDAP authenticating via Samba.In fact, I think the only reason I can SSH into the machine during that window is because I happen to have certificate authentication enabled and my client uses that.When I try to do a sudo command after logging in, though, and have to enter the password, it hangs. I've searched logs and haven't come up with much.I *think* it's related to this bug, but I'm not sure.And here's what's killing me ... it's not easy for me to figure out how to ensure that slapd starts before smbd and rsyslog (I read somewhere else that it needs to start before that for some reason) b/c most of the jobs are upstart jobs, but slapd is not.By default it runs at S19 in rc2.d, and I've tried manually lowering that as far as S05 or S07, but I'm still having trouble.
View 1 Replies
ADVERTISEMENT
Jul 8, 2011
My ISP offers the service of native IPv6. So my ADSL router provides me with a local and global IPv6 address. However after a reboot it takes minutes to finally see the global address when using "ifconfog eth0". During that time I can't do a ping6 to an external server, which seems logical. So I waited several minutes, but no global address. After that I started a KDE session, went back to the console(<Ctrl>+<Alt>+F1) and now the global address was there. Is this normal behavior or should I file bug report?
View 6 Replies
View Related
Feb 27, 2011
I opened GParted to create a new partition on a new drive. He wanted me to create a partition table first which I did, and it was created directly without any prompt like im used to see when creating partition. So I recognized too late, that i actually created a MBR on one of my 6 1TB raid5 drives. Not beeing sure if the ne MBR was really written, I have opened ubuntu disk utility and clicked on the check raid button. It directly made a resync. After the resync, mdadm --detail /dev/md0 told me everything is ok and synced. Then I wanted to mount it with:
mount /dev/md0 /mnt Then I get the following error: "mount: wrong fs type, bad option, bad superblock on /dev/md0, missing codepage or helper program, or other error In some cases useful info is found in syslog - try dmesg | tail or so" I think I just killed my raid5 ;(
I shouldnt work on my server when im tired and when I actually have no time ;( My last hope is the fact, that "Disk Utility" shows that there is a .0 TB ext4 volume on my raid (see screen below) [URL]
View 5 Replies
View Related
May 24, 2010
I want to create a new LDAP database.
Part of the new configuration is
Code:
dn: olcDatabase={1}hdb,cn=config
objectClass: olcDatabaseConfig
objectClass: olcHdbConfig
olcDatabase: {1}hdb
[Code].....
View 2 Replies
View Related
Jun 8, 2010
I have this group "cn=admins,ou=groups,dc=home,dc=com" And I've configured slapd in the new way so I'm not using slapd.conf (I think). First I thought about just modifying the files at /etc/ldap/cn=config/....... but that didn't work. How do I make that group into an admin-group with all the rights ?
View 3 Replies
View Related
Nov 15, 2010
There are several parts of problems in my question.
1. Install openLDAP and authenticate clients
2. Simple way to authenticate Ubuntu clients (just like Windows simple domain model, but Linux)
Part 1 What I have done: I have been working on openLDAP for the past 4 weeks. There is a lot of information on LDAP and I have read a lot of it There are several guides out there for openLDAP installation on Ubuntu, and I have tried many of them, and reinstalled the server between tests.
[Code]...
Part 2 Simple way to authenticate Ubuntu clients (just like Windows simple domain model, but Linux)
I have tried to find something similar to Windows client login, but haven't found anything that works. I just need to be pointed to somewhere to read about the authentication model in Linux. I can work out my from there. It must be something very simple I am missing, because when I read som echapters in The Ubunutu Bible, I can't find anything on it.
View 9 Replies
View Related
Apr 5, 2011
I'm using openldap(slapd) to store user account..But how can i ensure that each UserID can be only login on one machine at any one time?
I'm using ubuntu for both client and server..
View 1 Replies
View Related
May 18, 2010
I'm trying to set up an OpenLDAP server on a clean install of 10.04 server (AMD64). Following the server guide [URL] I get down to the "Setting up ACL" step:
$ ldapsearch -xLLL -b cn=config -D cn=admin,cn=config -W oldDatabase=hdb oldAccess
This command fails with "ldap_bind: Invalid credentials (49)"
When I replace the dn with what it seems like it should be:
$ ldapsearch -xLLL -b cn=config -D cn=admin,dc=example,dc=com -W oldDatabase=hdb oldAccess
I get "No such object (32)"
I have a feeling this is because 10.04 no longer asks you for the admin username and password during the initial debconf (nor does dpkg-reconfigure).
I can continue through the guide using this form of the commands (which were used earlier in the Guide):
$ sudo ldapsearch -Y EXTERNAL -H ldapi:/// -b cn=config olcDatabase=hdb olcAccess
But I'm a little concerned that I'm not able to properly use the admin user to make LDAP changes to the configuration. It also seems like the Server Guide ought to use the 'sudo ... -Y EXTERNAL' form of the commands throughout if cn=admin,cn=config isn't going to work.
View 5 Replies
View Related
May 24, 2010
I have slapd-server running but it seems to refuse connections in a very odd way. Wireshark shows that everytime JavaEE-client tries to connect, only 2 packages are sent. As I understand, in tcp/ip protocol, the first is just "hello, who's there". The last is just a message consisting of ACK and RST. I think RST means "we're done". At this point I don't think any credentials are checked so I don't know what could be wrong
View 1 Replies
View Related
Jun 30, 2010
I'm trying to follow the OpenLDAP docs that are part of the Ubuntu 10.04 Server Guide, listed here:
I get about halfway through, to this command:
sudo ldapadd -x -D cn=admin,dc=example,dc=com -W -f frontend.example.com.ldif
When it asks me to "Enter LDAP Password:" and nothing I have tried works. I thought it might have been "olcRootPW: secret" set in the backend file in the step before, but that isn't working.
View 3 Replies
View Related
Apr 17, 2011
I work for a college with many departments. I'd like to just deploy one LDAP/krb5 server (plus slave replicas) to authenticate all users in all departmentsIs it possible to do this?The proposed DNs for the departments matches what is done for NIS now.If anyone has any pointers or URLs that describe how to properly do this.
View 1 Replies
View Related
Apr 28, 2011
I have set up an OpenLDAP server to use as an common address book for my users.
I have all the addresses in a spreadsheet.
Is there a easy way to get this data into LDAP?
View 2 Replies
View Related
Jul 16, 2010
Small office... 20-30 computers all windows based. xp/vista/windows 7. 3 Servers running ubuntu 10.04... 1 domain controller, and two file servers with samba. We want to be able to login once in the morning, and then not have to worry about users/passwords at all throughout the day. So I was thinking that I could setup a PDC and then make the two filservers both BDC's and use ldap to authenticate everything. Would this even work out? and is there a better way to do it?
View 9 Replies
View Related
Jun 8, 2009
I am planning to deploy an OpenLDAP server in my LAN for basic authentication, but I have no idea how to do it. I would like to know how to configure an OpenLDAP Server, and I would also like to know about knowledge resources, if any.
View 3 Replies
View Related
Nov 30, 2009
After installing F11, I installed OpenLdap with the command "yum -y install openldap*" And added the password obtained through the command "slappasswd -s password -h {MD5}" into /etc/openldap/slapd.conf. Also, I specified the domain information within the file on "suffix" and "rootdn". I also modified the domain name in both /etc/openldap/ldap.conf and /etc/ldap.conf. I copied the Copied the /usr/share/doc/openldap-servers-2.4.15/DB_CONFIG.example to /var/lib/ldap/DB_CONFIG. Then started the server with the command /etc/rc.d/init.d/ldap start I then was able to create and delete OU's and CN's with the help of ldapadd and ldapdelete. I also created PERSON records using the base.ldif file with the content ;
dn: cn=user1, ou=domain, dc=example, dc=com
objectClass: person
cn: user1
sn: user1
Everything is OK until I try to add a person with an email address in the "mail" attribute. The error message is ;
***************************
adding new entry "cn=user1, ou=domain, dc=example, dc=com
ldap_add: Object class violation (65)
additional info: attribute 'mail' not allowed
***************************
This error message is appearing also with "uid" attribute. I have searched some forums and found some suggestions to include the line
"include /etc/openldap/schema/inetorgperson.scheme" in the file /etcopenldap/slapd.conf, which is already in.
View 1 Replies
View Related
Aug 27, 2011
A time ago I've been trying to implement a PDC linux server with Samba and Openldap for centralized authentication for windows and linux clients, but I can NOT get it. So I read somewhere that there is another option called Directory Server and maybe that is possible to do. According to your experience do you recommend any 'how to' or 'tutorial' that will permit implement a PDC server for authenticating and sharing files and printers for windows and linux clients?
View 2 Replies
View Related
May 21, 2010
I've setup an openldap server, and am trying to add .ldif files to the database.
I am constantly getting the following error, no matter what I do:
View 18 Replies
View Related
Jun 8, 2010
Code:
$ su -c 'yum install wine'
this forum won't let me put all the text in Transaction Check Error: package openldap-2.4.21-6.fc13.x86_64 (which is newer than openldap-2.4.21-4.fc13.i686) is already installed package nss-softokn-freebl-3.12.4-19.fc13.x86_64 (which is newer than nss-softokn-freebl-3.12.4-17.fc13.i686) is already installed
View 4 Replies
View Related
Aug 1, 2010
I am setting up a LDAP server in Fedora 13 system. I did the installation of the packages of openldap-server, openldap-client and openldap-server-sql (beause I may use sql as backend, install first). However, when I did the setup check by command: dapadd -f stooges.ldif -xv -D "cn=StoogeAmin,o=stooges" -h 127.0.0.1 -w secret1
and always says: ldap_bind: Invalid credentials (49) I am using slapd.conf for test as below. I did check the password are same.
[Code]...
View 7 Replies
View Related
Jul 31, 2010
No shared files/folders/drives and printers vanish. Most of the time re-booting will be the answer, but not this time I have 3 Ubuntu machines networked with two XP machines. one hard wired and two wireless on the 10.04. ONE wireless is networked right now and can see the other Ubuntu machines and the Windows machines and the printer. The other two are blind as a bat The two XP boxes one hard wired one wireless .. see each other. But see nothing on the Ubuntu machines that are down. Would like to fix this issue PERMANENTLY and quit screwing with it every couple of weeks Tried re-installing everything green in Samba and that did nothing. follow up edit managed to get the printers system back up on all on the net just by re-booting.
View 3 Replies
View Related
Nov 29, 2010
I have set up a new IP specifically for SSH and configured SSHD_Config accordingly to listen on this new interface and a specific port. However when I reboot SSH is not starting. Looking in the syslog it shows that it is unable to start. It looks like its trying to listen on the interface before it is set up.
Code:
Nov 29 13:00:23 anubis init: ssh main process (601) terminated with status 255
Nov 29 13:00:23 anubis init: ssh main process ended, respawning
Nov 29 13:00:23 anubis init: ssh main process (610) terminated with status 255
Nov 29 13:00:23 anubis init: ssh main process ended, respawning
Nov 29 13:00:23 anubis init: ssh main process (618) terminated with status 255
Nov 29 13:00:23 anubis init: ssh respawning too fast, stopped
I am able to start SSH manually once the server is booted. Do I need to set up my interfaces differently to ensure they are available prior to SSH starting somehow? I don't want to change my ssh config to listen on all addresses.
View 9 Replies
View Related
May 20, 2009
How can I start multiple X servers by logging into same user and using same desktop environment like KDE or GNOME. Is this possible by editing .xauthority, .xinitrc etc files?
View 1 Replies
View Related
May 22, 2010
Does anyone who has upgraded to ubuntu 10.04 through update manager have this a little bit annoying problem that the screen comes a little late after grub loaded it never happened before.It occurred when it said to restart the system first i thought it may be on first time but it is still load little late?
View 9 Replies
View Related
Dec 25, 2010
I'm getting one of those an 11" MacBook Air with 128gb SSD. 64gb might be too little for dual booting. Of course, I'll run Ubuntu on it. I'm choosing this hardware, because of the great form factor, aesthetics, trackpad, and ability to run OS X (as a UX designer, I want to do competitive analysis of the OS).It will be my first Mac. Any advice? Got tips on what I should start learning, getting used to, etc?
View 3 Replies
View Related
Aug 5, 2010
My mrtg refreshes usually too late(15 min.)and i want to make it 5 min.But i dont know where to edit.
View 1 Replies
View Related
Jan 15, 2010
My mysql server won't start on my machine. It simply fails with no errors.
Code:
sudo /etc/init.d/mysql restart
* Stopping MySQL database server mysqld [ OK ]
* Starting MySQL database server mysqld [fail]
When I run cat /var/log/mysql.err the file is empty, thinking this might be a permissions issue
I tried chowning to a mysql user. Here's the current permissions.
Code:
ls -alh /var/log/mysql*
-rw-r----- 1 mysql adm 0 2009-09-30 11:08 /var/log/mysql.err
-rw-r----- 1 mysql adm 0 2010-01-15 09:07 /var/log/mysql.log
-rw-r----- 1 mysql adm 20 2009-11-25 07:35 /var/log/mysql.log.1.gz
-rw-r----- 1 mysql adm 20 2009-11-24 07:59 /var/log/mysql.log.2.gz
-rw-r----- 1 mysql adm 20 2009-11-23 07:56 /var/log/mysql.log.3.gz
-rw-r----- 1 mysql adm 20 2009-11-22 07:54 /var/log/mysql.log.4.gz
-rw-r----- 1 mysql adm 20 2009-11-21 07:47 /var/log/mysql.log.5.gz
-rw-r----- 1 mysql adm 20 2009-11-20 07:43 /var/log/mysql.log.6.gz
-rw-r----- 1 mysql adm 20 2009-11-19 07:35 /var/log/mysql.log.7.gz
/var/log/mysql:
total 8.0K
drwxrwsrwx 2 mysql adm 4.0K 2009-09-30 11:08 .
drwxr-xr-x 16 root root 4.0K 2010-01-15 10:24 ..
Still having the same issue, mysql server is still failing and /var/log/mysql.err is still empty.
View 3 Replies
View Related
Apr 10, 2010
I am having problems with bond0 starting at boot on ubuntu server 9.10. After I do a restart I have to manually start the network with "ifup bond0". I have installed the built package (ifenslave-2.6_1.1.0-15ubuntu1_i386.deb (as indicated in Bug #482419)).
I have setup bonding for mode=6 with miimon=100 using eth0 and eth1 (both are Intel 10/100/1000 ports using an aic79xx network driver).
The contents of the aliases file are:
alias bond0 bonding
options bond-mode=6 miimon=100
The contents of the interfaces file are:
auto bond0
iface bond0 inet static
address 192.168.15.60
netmask 255.255.255.0
gateway 192.168.15.1
slaves eth0 eth1
bond-mode 6
View 9 Replies
View Related
Jun 23, 2010
I have it downloaded (linux version). What folder should I put it in?? Does it matter?
I am new to bash so i dont know how to start the Ventrilo Server up.
I navigated to the folder the server is in and did ./ventrilo_srv and ./ventrilo_srv -d and they both come up "No such file or directory".
View 2 Replies
View Related
Jul 10, 2010
How would I make sure cron is running every time my server is turned on? I want to make cron jobs, but I need to know that it is running when the server boots. Also, I used a program at some point that was terminal based and it showed be what programs ran when the server booted up. It allowed me to check a box and select which programs I could run at boot. If someone could tell me this program,
View 2 Replies
View Related
Sep 29, 2010
I have a server running 64bit lucid and while trying to get a script to run on boot to start Davmail I appear to have broken something. I have webmin installed but I have been trying to do the majority of things via the command line. I now have davmail starting at boot but a lot of other services don't start anymore, including apache, mysql and webmin. Fortunately SSH still works and I can start apache and webmin from the command line without any problems.
View 1 Replies
View Related