RE: Please help its urgent... !!!!

["Patrick Childers" <PatrickC@Media-Brokers.com>]

try ldap search with the -x option to use basic authentication
ex: ldapsearch -x -h localhost -p 9009

-----Original Message-----
From: owner-openldap-software@OpenLDAP.org [mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Subhrajyoti Moitra
Sent: Monday, July 09, 2001 3:11 PM
To: openldap-software@OpenLDAP.org
Subject: Please help its urgent... !!!!

hi,

i am having problems in connecting to slapd.

below is the command i use to start slapd..

the tests ran properly.. without any problem... i tried to use a similar syntax for slapd.

 

$slapd -f /etc/openldap/slapd.conf -h ldap://127.0.0.1:9009 -d 5

@(#) $OpenLDAP: slapd 2.0.7-Release (Mon Apr  9 17:11:38 CEST 2001) $
        vince@bi.mandrakesoft.com:/home/vince/rpm/BUILD/openldap-2.0.7/servers/slapd
daemon_init: ldap://127.0.0.1:9009
daemon_init: listen on ldap://127.0.0.1:9009
daemon_init: 1 listeners to open...
ldap_url_parse(ldap://127.0.0.1:9009)
daemon: initialized ldap://127.0.0.1:9009
daemon_init: 1 listeners opened
slapd init: initiated server.
slap_sasl_init: initialized!
slapd startup: initiated.
slapd starting

 

which i guess means that slapd has started properly....

when i try to search by ldapsearch..

 

$ldapsearch -h localhost -p 9009

ldap_sasl_interactive_bind_s: Can't contact LDAP server

 

at the slapd terminal .. i get .. the following ..

 

fd=9 host access from localhost.localdomain (127.0.0.1) denied.

 

what am i missing.... i new to openldap.. please help ..

some info that might help.. u get to the solution..

 

/etc/openldap/slapd.conf

 

# $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.8.8.4 2000/08/26 17:06:18 kurt Exp $
#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include         /etc/openldap/schema/core.schema

 

# Define global ACLs to disable default read access.

 

# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral       ldap://root.openldap.org

 

pidfile         /var/run/slapd.pid
argsfile        /var/run/slapd.args

 

# Load dynamic backend modules:
# modulepath    /usr/sbin/openldap
# moduleload    back_ldap.la
# moduleload    back_ldbm.la
# moduleload    back_passwd.la
# moduleload    back_shell.la

 

#######################################################################
# ldbm database definitions
#######################################################################

 

database        ldbm
suffix          "dc=my-domain, dc=com"
#suffix         "o=My Organization Name, c=US"
rootdn          "cn=Manager, dc=my-domain, dc=com"
#rootdn         "cn=Manager, o=My Organization Name, c=US"
# Cleartext passwords, especially for the rootdn, should
# be avoid.  See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw                secret
# The database directory MUST exist prior to running slapd AND
# should only be accessable by the slapd/tools. Mode 700 recommended.
directory       /var/lib/ldap/
# Indices to maintain
index   objectClass     eq

 

 

 

 

/etc/hosts.deny

#
# hosts.deny    This file describes the names of the hosts which are
#               *not* allowed to use the local INET services, as decided
#               by the '/usr/sbin/tcpd' server.
#
# The portmap line is redundant, but it is left to remind you that
# the new secure portmap uses hosts.deny and hosts.allow.  In particular
# you should know that NFS uses portmap!
#
# Mandrake-Security : if you remove this comment, remove the next line too.
ALL:ALL EXCEPT localhost:DENY

 

 

 

/etc/hosts.allow

#
# hosts.allow   This file describes the names of the hosts which are
#               allowed to use the local INET services, as decided
#               by the '/usr/sbin/tcpd' server.
#
#
sshd:ALL

 

i am using mandrake8.0 on a P-III. mandrake was configured with high security option.

 

PLEASE HELP!!!.. i am stuck ..