[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: OpenLDAP config issues
> On Sun, 2004-01-04 at 07:41, Jagga Daku wrote:
>> Hi Guys,
>>
>> I am new to this list, so I hope I am posting at the right place. I
>> have
>> successfully (finally!!) configured openldap on my redhat 9.0 box and
>> can
>> do a ldapsearch without any issues:
>>
>> -bash-2.05b# ldapsearch -b "dc=chamkila,dc=org" -x uid=testuser
>> # extended LDIF
>> #
>> # LDAPv3
>> # base <dc=chamkila,dc=org> with scope sub
>> # filter: uid=testuser
>> # requesting: ALL
>> #
>>
>> # testuser, People, CHAMKILA.ORG
>> dn: uid=testuser,ou=People,dc=CHAMKILA,dc=ORG
>> uid: testuser
>> cn: testuser
>> objectClass: account
>> objectClass: posixAccount
>> objectClass: top
>> userPassword:: e2NyeXB0fXg=
>> loginShell: /bin/bash
>> uidNumber: 541
>> gidNumber: 542
>> homeDirectory: /home/testuser
>>
>> # search result
>> search: 2
>> result: 0 Success
>>
>> # numResponses: 2
>> # numEntries: 1
>>
>>
>> However, when I try and search from outlook or netscape, it does not
>> return any results for this same user.
>>
>> ------
>> My /usr/local/etc/openldap/slapd.conf:
>>
>> include /etc/openldap/schema/core.schema
>> include /etc/openldap/schema/cosine.schema
>> include /etc/openldap/schema/inetorgperson.schema
>> include /etc/openldap/schema/nis.schema
>> include /etc/openldap/schema/misc.schema
>> include /etc/openldap/schema/redhat/autofs.schema
>> include /etc/openldap/schema/redhat/kerberosobject.schema
>> pidfile //var/run/slapd.pid
>> argsfile //var/run/slapd.args
>> access to attr=userPassword
>> by self write
>> by anonymous read
>> by dn="cn=Manager,dc=chamkila,dc=org" write
>> by * compare
>> access to *
>> by self write
>> by dn="cn=Manager,dc=chamkila,dc=org" write
>> by * read
>> allow bind_v2
>> database bdb
>> suffix "dc=chamkila,dc=org"
>> rootdn "cn=Manager,dc=chamkila,dc=org"
>> rootpw {SSHA}nR89LnqEDPE9fgVCP4zGK47/ipMtpTLT
>> directory /usr/local/var/openldap-data
>> index objectClass,uid,uidNumber,gidNumber,memberUid eq
>> index cn,mail,surname,givenname eq,subinitial
>>
>> --------
>>
>> My /usr/local/etc/openldap/ldap.conf:
>> HOST 127.0.0.1
>> BASE dc=chamkila,dc=org
>>
>> --------
>>
>> My base.ldif:
>> dn: dc=CHAMKILA,dc=ORG
>> dc: CHAMKILA
>> objectClass: top
>> objectClass: domain
>>
>> dn: ou=Hosts,dc=CHAMKILA,dc=ORG
>> ou: Hosts
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: ou=Rpc,dc=CHAMKILA,dc=ORG
>> ou: Rpc
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: ou=Services,dc=CHAMKILA,dc=ORG
>> ou: Services
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: nisMapName=netgroup.byuser,dc=CHAMKILA,dc=ORG
>> nismapname: netgroup.byuser
>> objectClass: top
>> objectClass: nisMap
>>
>> dn: ou=Mounts,dc=CHAMKILA,dc=ORG
>> ou: Mounts
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: ou=Networks,dc=CHAMKILA,dc=ORG
>> ou: Networks
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: ou=People,dc=CHAMKILA,dc=ORG
>> ou: People
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: ou=Group,dc=CHAMKILA,dc=ORG
>> ou: Group
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: ou=Netgroup,dc=CHAMKILA,dc=ORG
>> ou: Netgroup
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: ou=Protocols,dc=CHAMKILA,dc=ORG
>> ou: Protocols
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: ou=Aliases,dc=CHAMKILA,dc=ORG
>> ou: Aliases
>> objectClass: top
>> objectClass: organizationalUnit
>>
>> dn: nisMapName=netgroup.byhost,dc=CHAMKILA,dc=ORG
>> nismapname: netgroup.byhost
>> objectClass: top
>> objectClass: nisMap
>>
>> ----------
>>
>> My passwd.ldif for just testuser:
>>
>> dn: uid=testuser,ou=People,dc=CHAMKILA,dc=ORG
>> uid: testuser
>> cn: testuser
>> objectClass: account
>> objectClass: posixAccount
>> objectClass: top
>> userPassword: {crypt}x
>> loginShell: /bin/bash
>> uidNumber: 541
>> gidNumber: 542
>> homeDirectory: /home/testuser
>>
>> -------
>>
>> On Netscape I have provided amarjot.chamkila.org as the hostname and
>> name
>> of my server. "People" as the Base DN and 389 as the Port Number.
>>
>> Is there something that I am missing? Any suggestions or comments would
>> be greatly appreciated.
> ----
> I would think that ...
>
> Netscape/Outlook/any client baseDN should be
> ou=People,dc=CHAMKILA,dc=ORG
>
> Are you sure that your using uppper/lower/mixed cases aren't gonna cause
> you problems in the long run?
>
> Craig
>
Hi Craig,
I was able to lookup the users using Netscape and Outlook after using
ou=People,dc=chamkila,dc=org. I will make them all lower case once I get
it up and running (this is just a test system). Now I would like to add
email addresses for users so that they can be used through the address
book. How should I go about doing this? I downloaded the LDAP Explorer
Tool but can't seem to login (just lets me login using anonymous which
does not help much). What should by my RootDN, username and password?
The howto's don't mention this at all :(
Thanks,
--
Simran Hansrai
jagga@chamkila.org
www.chamkila.org
---------------
A bird in the hand is worth two in the bush. - Miguel de Cervantes, 1547 - 1616