Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openldap]

OpenLDAP Software is a free, open source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. LDAP is a platform-independent protocol for querying and modifying data using directory services running over TCP/IP.

OpenLDAP Software is a free, open source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. LDAP is a platform-independent protocol for querying and modifying data using directory services running over TCP/IP.

It is released under its own BSD-style license called the OpenLDAP Public License. The OpenLDAP Project was started in 1998 by Kurt Zeilenga which was initially based on a clone of the LDAP reference implementation from the University of Michigan.

1452 questions
14
votes
2 answers

"no global superior knowledge" while adding a country

I must add an organizationalunit like this into a freshly installed OpenLDAP (on Ubuntu 12.04) : dn: ou=MYREGION, ou=MYAPP, ou=GROUPS, o=myorganization, c=fr ou: MYREGION objectClass: top objectClass: organizationalunit So as it's a new LDAP, I…
Anthony O.
  • 674
  • 1
  • 5
  • 14
14
votes
3 answers

ldap_modify: Insufficient access (50)

I am running an OpenLDAP 2.4 server that uses the SSL service for communication. It works for lookups. I am trying to add mirror mode replication. So this is the command that I'm executing: ldapmodify -D "cn=myuser,dc=mydomain,dc=com" -H…
Lynn Owens
  • 435
  • 3
  • 7
  • 14
13
votes
5 answers

CentOS openLDAP cert trust issues

# LDAPTLS_CACERTDIR=/etc/ssl/certs/ ldapwhoami -x -ZZ -H ldaps://ldap.domain.tld ldap_start_tls: Can't contact LDAP server (-1) additional info: TLS error -8172:Peer's certificate issuer has been marked as not trusted by the user. # openssl…
84104
  • 12,905
  • 6
  • 45
  • 76
13
votes
2 answers

SSH only works after intentionally failed password

So, I'm having a rather weird problem. I have a server, that when I try to SSH into, immediately closes the connection if I type in the correct password on the first attempt. However, if I purposefully enter a wrong password on the first attempt,…
pyraz
  • 161
  • 1
  • 6
12
votes
2 answers

SSSD rejects LDAP login with su: incorrect password

I've set up an LDAP server with user accounts. I've successfully configured a Rails application to authenticate against this LDAP server. I'm now trying to configure SSSD to authenticate against LDAP, but it doesn't like the individual user…
Leo
  • 983
  • 7
  • 21
  • 39
12
votes
9 answers

OpenLDAP TLS Authentification

I am trying to implement TLS as per https://help.ubuntu.com/lts/serverguide/openldap-server.html When I try to modify cn=config database with this ldif file: dn: cn=config add: olcTLSCACertificateFile olcTLSCACertificateFile:…
Amar Prasovic
  • 171
  • 1
  • 2
  • 7
12
votes
3 answers

OpenLDAP - where is my slapd.conf?

I have installed OpenLDAP on Unbuntu 10.04. I wanted to configure my ldap but I can't find slapd.conf in /etc/ldap/ In this directory there is a ldap.conf but seems not to be the same. How can I configure my ldap ?
Pierre de LESPINAY
  • 370
  • 2
  • 6
  • 18
12
votes
5 answers

Small, simple LDAP server as an alternative to OpenLDAP

I have taken a look at the installation and configuration instructions for the newer OpenLDAP releases and decided that it's too much work to set up for my small userbase. Basically, I only use LDAP to synchronize user accounts on a small number of…
jstarek
  • 628
  • 1
  • 6
  • 18
12
votes
3 answers

How do I get openldap on Centos 6 to write anything to it's log files

I don't get any information in my log file for openldap on my Centos 6 server. This is how i configured it. SELinux is disabled at the moment. First created a folder where I'd like to store the log files. mkdir /var/log/slapd chmod 755…
Arlukin
  • 1,203
  • 6
  • 18
  • 27
12
votes
2 answers

Slappasswd output randomized

I was expecting slappasswd to produce a fixed hash but it appears that the output is randomized as I never get the same output for the same input password: $ slappasswd -s secret {SSHA}mCXsPZkfgQYZr2mKHpy5Iav+2S2XlVU3 $ slappasswd -s…
Max
  • 3,523
  • 16
  • 53
  • 71
11
votes
4 answers

ldap_modify: Other (e.g., implementation specific) error (80), handler exited with 1

When modifying the Open-LDAP configuration using: dn: olcDatabase={2}hdb,cn=config changetype: modify replace: olcAccess olcAccess: {0}to * by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" write by * none I get the…
Mildred
  • 825
  • 2
  • 10
  • 16
11
votes
6 answers

CentOS 6 + LDAP + NFS. File ownership is stuck on "nobody"

I've been trying to get LDAP authentication and NFS exported home directories on CentOS 6 working for a few days now. I've gotten to the point that I can now login to the client machine using the username and password in LDAP. On the client, /home…
jamieb
  • 3,427
  • 4
  • 25
  • 36
10
votes
2 answers

Does Linux keeps a cache of groups members if on LDAP ? (Difference between groups vs getent group))

Our users and groups LDAP configuration is working. Our server is using LDAP to store users and groups. # /etc/nsswitch.conf : passwd: compat ldap group: compat ldap shadow: compat ldap But today we added a new group in…
db_ch
  • 648
  • 5
  • 14
  • 21
10
votes
3 answers

How to get SASL authentication to work with DIGEST-MD5 for OpenLDAP?

I'm setting up OpenLDAP slapd on Ubuntu 14.04 Trusty Tahr. I want certain instances (replication etc.) that aren't users to be able to login via SASL using DIGEST-MD5 mechanism. Unlike users, they are not supposed to have a corresponding DN (along…
blubberdiblub
  • 595
  • 1
  • 5
  • 15
10
votes
2 answers

Can't access cn=config through Apache Directory Studio GUI

I am quite familiar with openldap. The dynamic configuration is quite new to me. So I wanted to make life easier and change openldap configuration through Apache Directory Studio GUI. Openldap is installed on Debian Jessie and Version slapd…
machschev
  • 151
  • 1
  • 8
1
2
3
96 97