Artikkelin Setting up OpenLDAP on Ubuntu 10.04 Alpha 2 (Lucid) kommentit

Kirjoittaja: Aleks Honma

Aleks Honma — Tue, 29 Nov 2011 02:01:35 +0000

Great article!

Help is appreciated.

I can’t seem to find how to enable/add more “administrators” to be able to write to the directory.

Also, how do I enable authentication different from “-Y EXTERNAL -H ldapi:///”.

Many thanks,
Aleks

Kirjoittaja: Dan Bishop » Ubuntu 11.10 SBS (Small Business Server) Setup: Part 6 – Account Management

Sat, 29 Oct 2011 11:11:56 +0000

[...] http://www.opinsys.fi/en/setting-up-openldap-on-ubuntu-10-04-alpha2 [...]

Kirjoittaja: Dan Bishop » Ubuntu 10.04 SBS (Small Business Server) Setup: Part 4 – OpenLDAP Account Management

Thu, 03 Feb 2011 15:28:02 +0000

[...] http://www.opinsys.fi/en/setting-up-openldap-on-ubuntu-10-04-alpha2 [...]

Kirjoittaja: efe

efe — Sun, 28 Nov 2010 22:12:43 +0000

Hi
This for document thanks Ubuntu for 10-4 very problem openldap

Kirjoittaja: SileNT

SileNT — Tue, 19 Oct 2010 23:01:21 +0000

Didn’t really work:

# ldapadd -Y EXTERNAL -H ldapi:/// -f init_database.ldif
SASL/EXTERNAL authentication started
SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
SASL SSF: 0
adding new entry “dc=example,dc=com”
ldap_add: Server is unwilling to perform (53)
additional info: no global superior knowledge

Any clues on how to fix it?

Kirjoittaja: Nick Piggott

Nick Piggott — Sun, 03 Oct 2010 18:47:34 +0000

This was excellent, and fixed a problem I had been battling with for ours. The official 10.04 Documentation on the Ubuntu website follows a process that is no longer valid under the standard install of 10.04. Well done for this fix.

Kirjoittaja: Veli-Matti Lintu

Veli-Matti Lintu — Wed, 08 Sep 2010 07:26:41 +0000

ldapscript package needs to be installed with “apt-get install ldapscripts”

Kirjoittaja: niki

niki — Thu, 02 Sep 2010 07:05:35 +0000

I dont have /etc/ldapscripts/ldapscripts.conf file. why?

Kirjoittaja: Slovarik

Slovarik — Tue, 03 Aug 2010 18:13:33 +0000

I’ve got same problem as Janne Talvio on 16.02.2010 post but when I’m trying “ldapsearch -D uid=testuser,ou=People,dc=edu,dc=example,dc=org -W -x -b dc=edu,dc=example,dc=org” it says I’m entered invalid credentials.

I’ve tried this howto several time and always got myself stuck with bad binding. Where should I search for the source of the problem?

Kirjoittaja: Slt

Slt — Tue, 03 Aug 2010 15:30:16 +0000

Hi there, thanks for the tutorial
I made this script:
—————————————————————-
#!/bin/sh
passwd=xxxxxx
dc1=host
dc2=com
hash_pw=`slappasswd -h “{MD5}” -s $passwd`
tmpdir=/tmp

ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/schema/cosine.ldif
ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/schema/inetorgperson.ldif
ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/schema/nis.ldif
ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/ldap/schema/misc.ldif
#——————————————————————-#
#
# create_database.ldif
#
#——————————————————————-#
cat < $tmpdir/create_database.ldif
# Load dynamic backend modules
dn: cn=module{0},cn=config
objectClass: olcModuleList
cn: module
olcModulepath: /usr/lib/ldap
olcModuleload: {0}back_hdb

# Create the database
dn: olcDatabase={1}hdb,cn=config
objectClass: olcDatabaseConfig
objectClass: olcHdbConfig
olcDatabase: {1}hdb
olcDbDirectory: /var/lib/ldap
olcSuffix: dc=$dc1,dc=$dc2
olcRootDN: uid=admin,dc=$dc1,dc=$dc2
olcRootPW: $passwd
olcDbConfig: {0}set_cachesize 0 2097152 0
olcDbConfig: {1}set_lk_max_objects 1500
olcDbConfig: {2}set_lk_max_locks 1500
olcDbConfig: {3}set_lk_max_lockers 1500
olcLastMod: TRUE
olcDbCheckpoint: 512 30
olcDbIndex: uid pres,eq
olcDbIndex: cn,sn,mail pres,eq,approx,sub
olcDbIndex: objectClass eq
EOF
sudo ldapadd -Y EXTERNAL -H ldapi:/// -f $tmpdir/create_database.ldif
#——————————————————————-#
#
# init_database.ldif
#
#——————————————————————-#
cat < $tmpdir/init_database.ldif
dn: dc=$dc1,dc=$dc2
objectClass: dcObject
objectclass: organization
o: $dc1.$dc2
dc: $dc1
description: LDAP root

dn: ou=People,dc=$dc1,dc=$dc2
objectClass: top
objectClass: organizationalUnit
ou: People

dn: ou=Groups,dc=$dc1,dc=$dc2
objectClass: top
objectClass: organizationalUnit
ou: Groups
EOF

ldapadd -Y EXTERNAL -H ldapi:/// -f $tmpdir/init_database.ldif

#
# acl.ldif
#
cat < $tmpdir/acl.ldif
dn: olcDatabase={1}hdb,cn=config
add: olcAccess
olcAccess: {0}to attrs=userPassword,shadowLastChange by dn=”uid=admin,ou=People,dc=$dc1,dc=$dc2″ write by anonymous auth by self write by * none
olcAccess: {1}to dn.subtree=”" by * read
olcAccess: {2}to * by dn=”uid=admin,ou=People,dc=$dc1,dc=$dc2″ write by * read
EOF

sudo ldapmodify -Y EXTERNAL -H ldapi:/// -f $tmpdir/acl.ldif
——————————————————————-

this apply directly what your tutorial said.
I’m on ubuntu 10.0.4 lts x64 and i tried many times to connect but without success.
Here some errors:
slapd starting
slapd[5526]: connection_read(13): no connection!
slapd[5526]: last message repeated 7 times
When I try to login from client:
conn=1000 op=0 do_bind: invalid dn (admin)
And when I try to log-in directly with ldapsearch -D uid=admin,ou=People,dc=….
Enter LDAP Password:
ldap_bind: Invalid credentials (49)