Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openldap]

OpenLDAP Software is a free, open source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. LDAP is a platform-independent protocol for querying and modifying data using directory services running over TCP/IP.

OpenLDAP Software is a free, open source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. LDAP is a platform-independent protocol for querying and modifying data using directory services running over TCP/IP.

It is released under its own BSD-style license called the OpenLDAP Public License. The OpenLDAP Project was started in 1998 by Kurt Zeilenga which was initially based on a clone of the LDAP reference implementation from the University of Michigan.

1452 questions
0
votes
3 answers

Secure ldap problem

I have tried to config my openldap to have secure connection by using openssl on Debian5. By the way, I got trouble during the below command. ldap:/etc/ldap# slapd -h 'ldap:// ldaps://' -d1 >>> slap_listener(ldaps://) connection_get(15): got…
neverland
0
votes
1 answer

OpenLDAP Access handling

I have installed OpenLDAP on Ubuntu Server 20.04. It works fine so far. Now I want to restrict access to the server, as by now anyone can read all entries e.g. in Thunderbird. Therefore I created a ldif file like this: dn:…
Arne Fallisch
  • 11
  • 2
0
votes
1 answer

OpenLDAP ppolicy load error

I'm going to try run of openldap. I created master-slave server and everything is ok. However when I load the ppolicy module I get an error like below SASL/EXTERNAL authentication started SASL username:…
Sasquacz1
  • 1
0
votes
1 answer

Active Directory/LDAP replication Windows/Ubuntu

I am trying to setup replication between a Windows AD and OpenLDAP on Ubuntu. Access to the Windows AD server seems to work OK, the OpenLDAP on Ubuntu also seems to work, however I am getting stuck on setting up the replication between both - I am…
termux
  • 101
0
votes
1 answer

How to increase OpenLDAP DN max length?

The maximum length of an OpenLDAP DN seems to be 255 characters. How can this value can be increased?
azmeuk
  • 195
  • 1
  • 2
  • 16
0
votes
1 answer

KDC has no support for encryption type while authentication to OpenLDAP

I'm running a Kerberos / LDAP authentication server for many years. Kerberos data is stored inside LDAP. Now, I have a second site and want to mirror the server to the new site. This basically works, but there is a strange side effect. Each server…
Lars Hanke
  • 285
  • 3
  • 16
0
votes
1 answer

Enforce TLS1.2 in sssd client

In one of our environments Linux servers are set up with sssd / OpenLDAP for OS login. To support older servers our OpenLDAP server has to support TLSv1.0 and TLSv1.1 still. RedHat 8 does no longer support TLS levels below TLSv1.2, and thus the…
sastorsl
  • 362
  • 2
  • 15
0
votes
1 answer

openldap master/slave replication configuration return TLS error from slave

I am trying to add a TLS secured replication between a master and a slave ldap server. The replication without TLS work well. I encounter this error from the slave : slapd_client_connect: URI=ldap://master.domain.com Error, ldap_start_tls failed…
user161458
  • 21
  • 5
0
votes
1 answer

freeradius and openldap : vlan attribution working with radtest but not with wpa_supplicant

Both of my services freeradius and openldap are on the same server. The schema Freeradius is loaded into openldap. I configured the radiusProfileDN of a user to link to a group. In this group, I have radiusReplyAttribute set to give the informations…
user161458
  • 21
  • 5
0
votes
2 answers

OpenLDAP push replication via proxy - Guide to setup syncrepl

I have some basic experience interacting with & troubleshooting OpenLDAP as well as 389-ds, but I don't have a whole lot of experience setting them up or configuring an OpenLDAP server. My goal is to setup replication from a Primary inside a trusted…
David W
  • 3,453
  • 5
  • 36
  • 62
0
votes
1 answer

Apple client unable to login with LDAP backend and GSSAPI or PLAIN

I have a OpenLDAP server with Kerberos5 for authentication and on Linux/Unix/Windows environments I am able to login without a problem. The LDAP server is configured to use GSSAPI or PLAIN that passes trough SASL2 the password to PAM that…
Sami Hulkko
  • 1
  • 1
0
votes
1 answer

Allow any user with specific uid to manager an entire OU

I have a domain (let's call it dc=example,dc=org) The domain has a branch (ou=users,ou=ftp,ou=services,dc=k9999,dc=z9999,dc=infra,dc=example,dc=org). There's a simpleSecurityObject in this domain…
Volodymyr Melnyk
  • 577
  • 1
  • 5
  • 19
0
votes
1 answer

OpenLDAP: a custom base DN for a user

Is that possible to make OpenLDAP provide with different base DNs for different users? Let me explain what exactly I want to acheive. I have a domain (let's say, dc=example,dc=org). I also have a phpLDAPadmin instance which purpose is to help me to…
Volodymyr Melnyk
  • 577
  • 1
  • 5
  • 19
0
votes
1 answer

OpenLDAP syncrepl with plaintext authentication

I'm trying to set up a syncrepl relationship between two openldap servers. The data they serve is not secret and they are used only in an enclosed network, so I'd like to avoid the hassle of setting up SSL. However it seems syncrepl refuses to work…
janneb
  • 3,841
  • 19
  • 22
0
votes
1 answer

Migrating OpenLDAP data from 2.4 to 2.5

I have gone through documentation online and on some forums but I am stuck on importing data from ldap 2.4 to 2.5 (Migrating to a new server as well). Here are the steps I did and the error I am receiving. (There were multiple other errors but that…
tvziem
  • 1
1 2 3
96 97