Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openldap]

OpenLDAP Software is a free, open source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. LDAP is a platform-independent protocol for querying and modifying data using directory services running over TCP/IP.

OpenLDAP Software is a free, open source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. LDAP is a platform-independent protocol for querying and modifying data using directory services running over TCP/IP.

It is released under its own BSD-style license called the OpenLDAP Public License. The OpenLDAP Project was started in 1998 by Kurt Zeilenga which was initially based on a clone of the LDAP reference implementation from the University of Michigan.

1452 questions
4
votes
2 answers

Securing OpenLDAP and AD

We are using OpenLDAP server as a proxy to AD by adding AD as subordinate to OpenLDAP. I've secured OpenLDAP traffic by using StartTLS connection, Now I've been told to use LDAPS protocol for the bind which we do to connect to AD Server(We are using…
Vishal
  • 215
  • 2
  • 9
4
votes
1 answer

LDAP (with ppolicy) errors on changing other user's password

I've set up an LDAP server with the ppolicy overlay, but now am having trouble resetting user's password in some cases: if the user has a failed login, then the pwdFailureTime attribute exists and ldapmodify fails complaining that it doesn't. If my…
Anton
  • 41
  • 1
  • 2
4
votes
2 answers

Move Windows accounts and settings to OpenLDAP

I need to transfer my machine-based accounts to a directory service, namingly OpenLDAP, run behind a Mac OS X server. The idea is that I have to make sure that the settings, the programs installed and their configuration, and pretty much…
Olivier Tremblay
  • 347
  • 3
  • 16
4
votes
1 answer

Setting Up multiple domain in LDAP server

I am trying to setup an LDAP server from scratch on a CENTOS 7 server. I was able to install it properly, but when it came to configuring it I am a bit stuck on the initial part. The thing is the company I am setting this up for has 3 domains…
Atish Goswami
  • 143
  • 1
  • 1
  • 4
4
votes
1 answer

OpenLDAP: Convert AD-Schema from *.ldif to *.schema

I'm running an OpenLDAP 2.4.44 with the module back_ldap as LDAP Proxy for MS-AD-Servers (see for details: openLDAP as proxy to Active Directory). Now I need to add the schemata from AD-Server to the OpenLDAP-Server and I have exported the schemata…
notes-jj
  • 248
  • 4
  • 9
4
votes
2 answers

id command is not showing secondary groups

During some days I've been working on a LDAP integration. Now, after configure almost everything that I needed, I came up with this last wall: The need of use secondary groups which are taken from the LDAP server. Behaviour: [root@sr-servicesLin ~]#…
ITPro Guy
  • 43
  • 1
  • 5
4
votes
1 answer

OpenLDAP : retrieve members of a group

I enabled memberof module in openldap. Added two groups and some members under them. (groupOfNames) When I printed the members of a particular group using the filter (&(objectClass=groupOfNames)(cn=bowlers)), it prints only the first member of the…
user2402244
  • 51
  • 1
  • 2
  • 4
4
votes
2 answers

AWS Simple AD: "KDC has no support for encryption type" for users created with adtool, but not with MS Management Console

Background I am trying to log in (via SSH, to an Amazon Linux EC2 instance running sssd) as users that I've created in my AWS Directory Services Simple AD. I am authenticating with kerberos and identifying the user with LDAP (all through…
2rs2ts
  • 325
  • 3
  • 11
4
votes
1 answer

Rabbitmq Won't Talk to Active Directory

I have a rabbitmq server that I need to hook up to AD. Configuration is set using puppet rabbitmq module, with some minor manual changes (log level): % This file managed by Puppet % Template Path: rabbitmq/templates/rabbitmq.config [ {rabbit, [ …
user3081519
  • 253
  • 2
  • 13
4
votes
1 answer

ldap_add: Other (e.g., implementation specific) error (80) when adding pw-sha2.la module

I'm getting this error when trying to add a module to OpenLDAP: # ldapadd -H ldapi:/// -Y EXTERNAL -D 'cn=config' -f ./module.ldif SASL/EXTERNAL authentication started SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth SASL SSF:…
Leo
  • 983
  • 7
  • 21
  • 39
4
votes
1 answer

Master is Dead - Promote LDAP Slave to Master

I have inherited an undocumented openLdap setup - one Master server with two slaves. The Master died hard last night - disc corruption - the backup was a clone system on the same server and disk - so that is useless. Users can still authenticate…
Mike C
  • 41
  • 2
4
votes
1 answer

ldap_modify: Insufficient access (50) when changing password

I'm trying to modify the LDAP admin password on a fresh OpenLDAP install on CentOS 6.7 (similar to RHEL 6.7). I created a file called change_ldap_password.ldif: # Hash your password: # slappasswd -h {SSHA} -s "my_password" # I also tried {1}hdb…
Leo
  • 983
  • 7
  • 21
  • 39
4
votes
1 answer

How to add a user containing a UID to OpenLDAP that runs on CentOS7?

Add a user user.ldif dn: uid=sampleuser,ou=people,dc=my-domain,dc=com objectClass: top objectClass: inetOrgPerson cn: sample user uid: sampleuser Problem [root@host ~]# ldapadd -x -W -D "cn=Manager,dc=my-domain,dc=com" -f user.ldif Enter LDAP…
030
  • 5,901
  • 13
  • 68
  • 110
4
votes
1 answer

LDAP authentication fails

I try to set up an LDAP directory that will allow me to authenticate Debian users. Once the configuration of the LDAP server and PAM files is done, the authentication fails. I think the client doesn't find the ldap user into the directory. When I…
EAI
  • 43
  • 1
  • 1
  • 5
4
votes
1 answer

SSH authentication based on existing OpenVPN tunnel

I have a single CentOS server, and several Windows clients that should connect to it, from remote. I've successfully setup OpenVPN (with Public Keys), with which the clients connect to the server; and then they use SSH to do the actual work.…
Zvika
  • 233
  • 5
  • 10
1 2 3
96 97