[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Really confusing responses (was: Re: Can't slapadd ldif file)



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Phil Dibowitz wanted us to know:

>OK, ignore my last email, actually it IS important my shadow 
>information, but I was using ldapsearch without enough privilege to see it.

Repost your slapd.conf, specifically the entire access section (all
lines).

>But, eh, how do I specificy to ldapsearch I'd like to search as manager 
>- keeping in mind, I'm not (yet?) using SASL? I tried -W, and it prompts 
>me for a passwd, and I put it in, but I still dont' see crypts.

You must specify who to bind to the directory as.

ROOTDN="cn=Manager,dc=stxe,dc=com,c=US"  #Substitute whatever your
                                         #root DN is.
SEARCHBASE="dc=stxe,dc=com,c=US"  #Kept seperate from ROOTDN since it
                                  #might be defined totally different
                                  #in your slapd.conf
ldapsearch -x -D $ROOTDN -W -b $SEARCHBASE 'cn=username'

It should find and print all attributes for:
  cn=username,ou=Groups,dc=stxe,dc=com,c=US
Depending on your access lines in slapd.conf, you may be able to see
your own userPassword attribute or not and your may be able to see
others' userPassword attribute or not.  If you _can_ see others', that's
probably a bad thing.

Blue skies...			Todd
- -- 
A: No
Q: Should I quote at the end of the message?
   Linux kernel 2.4.19-16mdk   1 user,  load average: 0.01, 0.02, 0.00
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE9857sIBT1264ScBURAqM6AKDajE0Yg/QPXffDzYJpgADiyxMxFwCdF+wP
gjJqNCox4w4pJrpYYQrisKs=
=g/NN
-----END PGP SIGNATURE-----