[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Still I am uanble to execute ldapsearch

To: shreedhar <shreedhar@lucidindia.net>, Christian Pohl <pohl@secaron.de>
Subject: Re: Still I am uanble to execute ldapsearch
From: Chee Wai Yeung <cheewai_yeung2003@yahoo.com.hk>
Date: Tue, 3 Jun 2003 03:08:47 -0700 (PDT)
Cc: SW OpenLDAP <openldap-software@OpenLDAP.org>
In-reply-to: <006a01c329a1$a8266d70$1201a8c0@a4005>

Hi,

>From the ldapadd log it seems the first entry has been
added successfully.

Your correct ldapsearch command should be:

(Well, I am using rootdn to bind to it for the moment
so that you can see that your data has been added
correctly)

ldapsearch -D 'cn=Lucid,o=stixen.co.uk,c=uk' -b
'o=stixen.co.uk,c=uk' -x -w secret 'objectclass=*'

This should work.

And pleaes make sure you read and understand the
manual pages for ldapsearch(1) and ldapadd(1).

Thanks
Chee Wai

PS: you will need to use -D to specify the binddn, -x
to use simple authentication, and -w password for the
binddn password, as I don't see you allow anonymous
binding in youe slapd.conf.

--- shreedhar <shreedhar@lucidindia.net> wrote:
> 
> ----- Original Message -----
> From: "Christian Pohl" <pohl@secaron.de>
> Newsgroups: secaron.lists.openldap-software
> To: "shreedhar" <shreedhar@lucidindia.net>
> Sent: Tuesday, June 03, 2003 12:46 PM
> Subject: Re: Still I am uanble to execute ldapsearch
> 
> 
> > shreedhar wrote:
> > > Hello Chris,
> > >
> > > [root@devserv Lucid]# ldapsearch -b -x
> "o=stixen.co.uk,c=uk"
> > > "(objectclass=*)"
> > >  dn
> > > SASL/DIGEST-MD5 authentication started
> > > Please enter your password:
> > > ldap_sasl_interactive_bind_s: Internal
> (implementation specific) error
> (80)
> > >         additional info: SASL(-13): user not
> found: no secret in
> database
> > >
> > > where I gave password as 'secret', whcih I had
> given in slapd.conf.
> > >
> > >
> > > Thanks & Regards,
> > > Sreedhar Bhaskararaju
> > > ----- Original Message -----
> > > From: "Christian Pohl"
> <list-openldap-software@mail2news-gw.secaron.de>
> > > To: <openldap-software@OpenLDAP.org>
> > > Sent: Tuesday, June 03, 2003 12:20 PM
> > > Subject: Re: Still I am uanble to execute
> ldapsearch
> > >
> > >
> > >
> > >>shreedhar wrote:
> > >>
> > >>>Hello Chee Wai,
> > >>>
> > >>>I run the ladpadd command as you says. with
> 'Test2.ldif' <Which
> consists
> > >
> > > of
> > >
> > >>>Root dn > and 'Test1.ldif' <Which consists of
> sub dns>
> > >>>
> > >>>now path given in slapd.conf filled with
> following details (i.e
> > >>>/home/shreedhar/ldap/Lucid).
> > >>>
> > >>>[root@devserv Lucid]# ls -l
> > >>>total 168
> > >>>-rw-------    1 root     root         8192 Jun 
> 3 11:05 __db.001
> > >>>-rw-------    1 root     root       270336 Jun 
> 3 11:05 __db.002
> > >>>-rw-------    1 root     root        98304 Jun 
> 3 11:05 __db.003
> > >>>-rw-------    1 root     root       368640 Jun 
> 3 11:05 __db.004
> > >>>-rw-------    1 root     root        16384 Jun 
> 3 11:05 __db.005
> > >>>-rw-------    1 root     root         8192 Jun 
> 3 11:05 dn2id.bdb
> > >>>-rw-------    1 root     root        32768 Jun 
> 3 11:05 id2entry.bdb
> > >>>-rw-------    1 root     root        56164 Jun 
> 3 11:06 log.0000000001
> > >>>-rw-------    1 root     root        20480 Jun 
> 3 11:06 objectClass.bdb
> > >>>
> > >>>While running ldapadd I got some output. I am
> attaching that output
> with
> > >>>this mail for analysis
> > >>>
> > >>>If I run search command I got the following
> information. (Success
> > >>>information)
> > >>>
> > >>>[root@devserv stixen]#
> /usr/local/bin/ldapsearch  -D
> > >>>"cn=Lucid,o=stixen.co.uk,c=uk"  -b
> "o=stixen.co.uk,c=uk" -x -w secret
> > >>>'ojectclass=*'
> > >>># extended LDIF
> > >>>#
> > >>># LDAPv3
> > >>># base <o=stixen.co.uk,c=uk> with scope sub
> > >>># filter: ojectclass=*
> > >>># requesting: ALL
> > >>>#
> > >>>
> > >>># search result
> > >>>search: 2
> > >>>result: 0 Success
> > >>>
> > >>># numResponses: 1
> > >>>
> > >>>But if I tried to search other entires like may
> name
> > >>>
> > >>>[root@devserv Lucid]# /usr/local/bin/ldapsearch
>  -D
> > >>>"o=stixen.co.uk,c=uk"  -b "cn=Shreedhar B,c=uk"
> -x -w secret
> > >
> > > 'ojectclass=*'
> > >
> > >>>ldap_bind: Inappropriate authentication (48)
> > >>>
> > >>>May I know what is the problem in this.
> > >>>
> > >>>Many Many thanks for your kind cooperation.
> > >>>
> > >>>Regards,
> > >>>Sreedhar
> > >>>
> > >>
> > >>Hi Sreedhar,
> > >>
> > >>compare your 1st ldapsearch with the 2nd one.
> You'll see that you
> > >>misspelled the bin-dn '-D' in the second one.
> > >>
> > >>try ldapsearch -b "o=stixen.co.uk,c=uk"
> "(objectclass=*)" dn
> > >>
> > >>this should give you _all_ DNs that are stored.
> (I don't know your ACLs,
> > >>but default it's read by all)
> > >>
> > >>Chris
> > >>
> > >>--
> > >>Christian Pohl
> > >>»|secaron
> > >>
> > >>--
> > >>The From: and Reply-To: addresses are internal
> news2mail gateway
> > >
> > > addresses.
> > >
> > >>Reply to the list or to Christian Pohl
> <pohl@secaron.de>
> > >>
> > >
> >
> > If you do not make any authentication, leave away
> the '-x'.
> >
> >
> >
> > --
> > Christian Pohl
> > »|secaron
> >
> 
> Even I remove -x option I got the following error
> 
> [root@devserv Lucid]# ldapsearch -b 
> "o=stixen.co.uk,c=uk" -w secret
> "(objectcl
> ass=*)" dn
> SASL/DIGEST-MD5 authentication started
> ldap_sasl_interactive_bind_s: Internal
> (implementation specific) error (80)
>         additional info: SASL(-13): user not found:
> no secret in database
> 
> Sreedhar
> 


__________________________________
Do you Yahoo!?
Yahoo! Calendar - Free online calendar with sync to Outlook(TM).
http://calendar.yahoo.com

References:
- Re: Still I am uanble to execute ldapsearch
  - From: "shreedhar" <shreedhar@lucidindia.net>

Prev by Date: Re: PASSWORDS (2)
Next by Date: Re: PASSWORDS (2)
Index(es):
- Chronological
- Thread