current community

your communities

more stack exchange communities

Stack Exchange
tour help

Tagged Questions

[OpenLDAP Software](http://www.openldap.org/software/) is an [open source](http://www.opensource.org/) implementation of the Lightweight Directory Access Protocol (LDAP).

learn more… | top users | synonyms

0
votes
0answers
3 views

SASL fails to with against LDAP

So I am running into a whirlwind of issues with my cyrus install. I am setting up a multi-domain kolab groupware solution. I am on centos 6.7 I am getting this flooding my error logs when I try to ...
2
votes
2answers
26 views

Restarting LDAP client service

I have modified ldap.conf and slapd.conf. I'm wondering how I can restart the ldap/client service, filesystem/autofs and name-service/cache. OS: Solaris 11 but advice on linux should help too
0
votes
0answers
19 views

LDAP replication issues (duplication)

I initially thought this question might be more appropriate for SO, however as I believe it's more of a configuration problem I have posted it here. I'm running LDAP 2.4 on RHEL 6.4. I have 2 LDAP ...
0
votes
2answers
15 views

Why are my OpenSSH keys stored in OpenLDAP returned base64 encoded

I'm doing an experiment on my Ubuntu server and have stored OpenSSH keys in the OpenLDAP server. There are enough examples around how to achieve this. A good source is this one. Somehow my keys are ...
0
votes
1answer
21 views

Kerberos/LDAP login fails - remove Preauth?

Using a Debian system with a Kerberos/LDAP client - login fails on KDE as a user directory isn't being created. SSH is successful (and no directory is created); however, desktop login isn't. I've ...
0
votes
1answer
28 views

How to automate (copy) LDAP/Kereberos install

I have several machines running Debian that I'm configuring to work with Kerberos and LDAP. I thought I would automate using rsync. At first I tried a basic rsync clone excluding directories and ...
0
votes
1answer
44 views

OpenLDAP: Invalid syntax error when trying to add LDIF

I keep getting an invalid syntax error when trying to create a user in OpenLDAP (CentOS 7). This is a new install of OpenLDAP for testing purposes. So far I've managed to create a group called "Lab ...
0
votes
0answers
27 views

How Can I Set Up DNS Server on Virtual Network w/out Internet?

I'm trying to set up a virtual network populated with 4 CentOS 7 servers for testing purposes. I have successfully configured a Kerberos server and a secondary Kerberos server. However, when it ...
0
votes
3answers
155 views

How to uninstall OpenLDAP in RedHat?

I have installed OpenLDAP with yum, but I have accidentally deleted some of the config files. I am not able to recover them. I want to uninstall it. I tried the following command but it ends with an ...
0
votes
0answers
34 views

OpenLDAP - ACL control - Full access to user

I need to create a ACL that give to user a full write to rootdn. I tried that: access to * by dn="cn=replicator,o=rootdomain" write But I get the some message. error 50 "Insufficient ...
0
votes
1answer
74 views

OpenLDAP's cn=config is not getting fully replicated

I've got OpenLDAP 2.4.39 master and a read-only replica, using the cn=config aka "OLC" configuration (as oppose to the older slapd.conf method). Replication works for data (user accounts, etc) but ...
0
votes
0answers
15 views

How to create two DIT's in the openldap

this is the file my first DIT. # AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify. # CRC32 78ca14ea dn: olcDatabase={1}hdb objectClass: olcDatabaseConfig objectClass: olcHdbConfig olcDatabase: ...
1
vote
1answer
80 views

What are the other alternative to test a LDAP connection on linux machine

I have Linux machine, Redhat 5.8, that gets data via LDAP. For an unclear reason, I can’t get the data via LDAP. I see that from /var/log/messages and /var/log/secure the problem is that the ...
1
vote
2answers
60 views

what is the right ldapsearch version for my linux red-hat machine

I am little confuse about the following I want to install the binary ldapsearch tool on my linux machine In order to use this tool to test LDAP connection on my linux ( linux version 5.8 , i386 ) ...
0
votes
2answers
81 views

OpenLDAP: How to add home directory for users?

I am experimenting with an OpenLDAP-Server and I'm not sure how to add /home directories for users. Also where are the files stored? If a user creates a file on a Windows machine in the domain, where ...
0
votes
0answers
124 views

ldap user on samba share

I have two servers: one is ldap and the other is samba. I have an existing user on the ldap server for an ldap client. Now I want to use this user account with samba to give share access permissions ...
0
votes
0answers
84 views

OpenLDAP overlay RWM (empty AttributeDescription)

I'm trying to merge the results of two difference ldapsearches into one result, so it can be used in Asterisk. For example, I have the following two searches: ldapsearch -x -LLL -H ...
0
votes
0answers
45 views

OpenLDAP and vsftpd default directory

We are hosting a cluster of VMs all incorporating OpenLDAP. I came on after the server was setup, and the original sysadmin set a single FTP LDAP username for everyone inside and outside the ...
2
votes
0answers
184 views

Force OpenSSH / pam / pam_ldapd to do pam_ldapd(sshd:auth) with public-key authentication

I have working pam_ldap authentication using libpam_ldapd. I'm using slapo-nssov and want to use loginStatus attribute which is added to users ldap entry after opening pam session and deleted when its ...
0
votes
1answer
255 views

Ubuntu Postfix Open LDAP integration - no SASL authentication mechanisms

Ive followed all the steps in https://help.ubuntu.com/community/Postfix/DovecotLDAP but I am getting a localhost postfix/smtpd[12520]: fatal: no SASL authentication mechanisms in my ...
1
vote
0answers
71 views

How to integrate Request Tracker 4.0 with Open LDAP in Debian?

I want my ldap users to log in to RTand see the tickets. I have gone through RT documentation but it's a bit complicated for me as I'm just a starter. I do understand that I gotta edit ...
0
votes
0answers
108 views

Getting error when integrating cloudera hue with ldap server?

I have configured ldap server on centos machine.I am able to execute ldapadd and ldapsearch sucessfully. But while integrating ldap with cloudera hue getting following error Server Error (500) ...
0
votes
0answers
20 views

Disconnect of primary OpenLDAP freezes network

I am running two Ubuntu 12.04 LTS systems, one physical one virtual, configured as primary/secondary. Physical - Primary LDAP, Secondary DNS/DHCP Virtual - Secondary LDAP, Primary DNS/DHCP ...
2
votes
1answer
143 views

Existing LDAP object not showing in ldapsearch

I have a couple of LDAP servers, redundant with replication enabled. I'm having trouble with Apache Directory Studio not being able to fetch the base DN of one of these LDAP servers, showing an ...
0
votes
1answer
143 views

Can't get OpenLDAP and Pam LDAP working at all

Yesterday, I set up an OpenLDAP server and tried to configure it to be useful for SSH. Followed these two guides from DigitalOcean: ...
1
vote
0answers
122 views

How to using Zimbra LDAP authentication to svn

I'm using Zimbra mail with LDAP extension. Now, I want to use Zimbra mail authentication accept to SVN (web server Apache). eg: config SVN in web server for me: AuthLDAPURL ...
0
votes
0answers
24 views

OpenLDAP migration across different distros

I have an openldap server running on Xandros I want to move openldap to CentOS. I am new at Linux (Windows and MAC admin) Would it be better to backup the current schema to another server and run ...
1
vote
0answers
612 views

LDAP: Local and remote user with same username

I have configured an openLDAP server with LDAP user and group ids beginning at 10000. My client successfully binds to the LDAP server via ldapsearch. Additionally, getent passwd|group returns a full ...
1
vote
0answers
177 views

OpenLdap - restore backup - slapcat/slapadd

Im using slapcat to make backup like this: slapcat -n 1 > ${BACKUP_PATH}/ldap.domain.com.ldif Then import using slapadd: slapadd -F /etc/ldap/slapd.d -n 1 -l ldap.domain.com.ldif I can't ...
0
votes
0answers
142 views

openldap synchronized is not working

I've seen old threads, this is similar as mine but still no answer. I want to know how to make sync work. The following is my slapd config setting @ Master & Slave Ldap Server: @ ...
2
votes
0answers
40 views

Is it possible to login to a Linux machine with AD credentials without the machine beeing member of the AD?

I'm asking because as far as I know this is not possible with Windows machines since it's mandatory that a Windows machine is known to the AD in order to login with AD credentials. Is it possible to ...
3
votes
0answers
2k views

Setup LDAP client on RHEL 6.5

I am preparing for RHCSA exams and trying to setup LDAP client on my RHEL 6.5 box I am connecting to the online testing LDAP server Here I don't understand the relationship among following 3 files, ...
2
votes
1answer
125 views

How to disconnect a server from LDAP

I have a Fedora server configured for LDAP. However, the LDAP server is gone, and now I'm unable to SSH into it. I've rebooted the server into single-user mode, brought up eth0 and started sshd, but ...
3
votes
1answer
327 views

Active Directory to OpenLDAP synchronisation

We have a domain controller with Active Directory with a number of basic users with custom attributes. We are looking for a way to synchronise the active directory users to OpenLDAP (currently running ...
0
votes
0answers
64 views

Mirror mode openldap perfromance is slow when either mirrored node fails

I'm managing two openldap servers in mirrored mode. When either server fails ldap performs poorly, 30 seconds to several minutes to authenticate. Affected services include ssh and X11 (XDMCP). A ...
1
vote
2answers
428 views

How to make vnc server and ldap authentication work together?

I have a RHEL 6.4 box and I am running tigervnc-server on the box to enable remote gui access for different users. I have the users created locally and have created separate displays for them in the ...
1
vote
1answer
1k views

What are the effects of increasing hard and soft limits for ldap user

I've been having some instability issues with my LDAP server. I have ~2000 machines connecting to it. Using netstat -pant | grep slapd, I can typically see 1500+ connections from the clients to the ...
2
votes
1answer
236 views

Integrating LDAP and Kerberos V to add users via a useradd-like interface

I'm currently trying to set up an integrated Kerberos V/LDAP system for authentication/authorization. From what I have managed to gather, there are at least two ways to integrate Kerberos V with LDAP: ...
0
votes
1answer
2k views

Error while starting slapd

In my CentOS 6.5 machine I just made a new import with the slapadd command to load a new LDIF (from another server). The dc values are exactly the same and it was working with a previous load. ...
1
vote
0answers
35 views

Can a RHEL 6.4 DS sync with a CentOS 5.4 DS

I have two CentOS 5.4 Directory Servers that sync information on a daily bases. I'm wanting to replace them with two RHEL 6.4 Directory Servers. Before the existing two are decommissioned all four ...
1
vote
1answer
276 views

kdb5_ldap_util fails with cryptic error

Supposedly, in order to set up Kerberos, I need to run kdb5_ldap_util, though I'm not sure why. However, it fails with: # kdb5_ldap_util -D cn=admin,dc=example,dc=com create -subtrees ...
1
vote
1answer
398 views

LDAP: ldapadduser - can I add to two different groups?

Usually - ldapadduser assumes only one attribute for group-name: # ldapadduser sysuser2 sysusers Can I add add this users in to two groups while creating user? If I try run like: # ldapadduser ...
3
votes
0answers
174 views

LDAP: view DIT structure from terminal

Can I get list of existing entries using any console utilities? For example - I can get a tree of my filesystem with tree: $ tree . ├── Catalina │   └── localhost │   ├── host-manager.xml │   ...
1
vote
1answer
171 views

OpenLDAP: how can I list active schemes, classes etc?

I'm using openldap-server-2.4.38_1 on FreeBSD 9.1-RELEASE-p5. 1) can I get list of active (connected) schemes without viewing slapd.conf file? 2) how can I get description of obectClasses and/or ...
2
votes
3answers
509 views

OpenAM to OpenLDAP to SysAID (LDAP) Authentication

We just began using a new software called SysAid which uses LDAP to authenticate users. We have a client, which uses OpenAM to authenticate their users for a proprietary web application. Our goal, ...
2
votes
2answers
336 views

LDAP user not present in the desired group

We have LDAP and NFS setup in the lab. The lab has 16 machines and a server. All the LDAP users home directory is present in the server. Whenever, the LDAP user logs in from any of the 16 machines, ...
0
votes
0answers
107 views

removing an OU from a record on OpenLdap Database

I am trying to remove "ou=ABCD" from this ldap record: # [email protected], ABCD, Active, Member, myldapdomain.org dn: ...
1
vote
2answers
1k views

How to create LDAP bind account in Centos/RedHat that allows me to search by [email protected]

I am creating an LDAP directory and searching by the full DN shows the proper results. $ ldapsearch -x -D "cn=ldapbind,dc=server,dc=com" -w bind I want / need to be able to search using the email ...
5
votes
1answer
11k views

how do I configure my RHEL5 or RHEL6 system to use ldap for authentication?

I have root access to a RHEL6 system and I want to use the corporate ldap server where I work for user authentication. I ran authconfig-tui and checked [*] Use LDAP and left [*] Use Shadow ...
-1
votes
1answer
864 views

SSH key based login bypasses password policies

I noticed that logins via an SSH key bypass the LDAP password policies (password ageing, password warning, and password lockout due to failed attempts, etc). Is there any way to force key-based ssh ...

1 2