[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
ldapmodify not working
I am having a weird problem with not being able to modify an ldap entry.
I created a user and whas having problems logging in, looking into it
I checked his hashed password and compared it to what slappasswd -h
{md5} generated and found they were different (using secret for the
encrypted pwds here):
ldapsearch -xLLL -b -W o=iowanews,o=computility uid=administrator uid
userpassword
Enter LDAP Password:
dn: uid=administrator,ou=Users,o=iowanews,o=computility
uid: administrator
userPassword:: e01ENX1XRDRaUDNiRnB0UEVQZ3JSUTJHNmlnPT0=
I ran ldapmodify to try to update the user:
ldapmodify -x -W -D"cn=Manager,o=computility"
Enter LDAP Password:
dn: uid=administrator,ou=Users,o=iowanews,o=computility
userpassword: {MD5}Xr4ilOzQ4PCOq3aQ0qbuaQ==
lmPassword: 552902031BEDE9EFAAD3B435B51404EE
ntPassword: 878D8014606CDA29677A44EFA1353FC7
And re-ran the search:
ldapsearch -xLLL -b -W o=iowanews,o=computility uid=administrator uid
userpassword
Enter LDAP Password:
dn: uid=administrator,ou=Users,o=iowanews,o=computility
uid: administrator
userPassword:: e01ENX1XRDRaUDNiRnB0UEVQZ3JSUTJHNmlnPT0=
Looking at the log file (-1 attached below) it says the update was
successful, but the entry hasn't changed. I did notice that the
userPassword line has two colons after it instead of 1, I don't know if
that is significant.
slapd.conf:
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/redhat/rfc822-MailMember.schema
include /etc/openldap/schema/redhat/autofs.schema
include /etc/openldap/schema/redhat/kerberosobject.schema
include /etc/openldap/schema/samba.schema
loglevel -1
database ldbm
suffix "o=computility"
rootdn "cn=Manager,o=computility"
rootpw <password>
directory /var/lib/ldap/db
index objectClass,rid,uid,uidNumber,gidNumber,memberUid eq
index mailAlternateAddress eq
index cn,mail,surname,givenname eq,subinitial
replogfile /var/lib/ldap/master-slapd.replog
replica host=192.168.100.3:389
--replica info--
This entry has replicated and is the same way on the slaves as well. I
have tried removing the user as well and it says the command is
successful, but the user still exists.
Thanks in advance,
Justin
computility
ldap.log:
Jan 6 10:25:59 master slapd[23141]: send_ldap_result: conn=0 op=0 p=3
Jan 6 10:25:59 master slapd[23141]: send_ldap_result: 0::
Jan 6 10:25:59 master slapd[23141]: send_ldap_response: msgid=1 tag=97
err=0
Jan 6 10:25:59 master slapd[23141]: conn=0 op=0 RESULT tag=97 err=0 text=
Jan 6 10:26:02 master slapd[23141]: daemon: activity on 1 descriptors
Jan 6 10:26:02 master slapd[23141]: daemon: activity on:
Jan 6 10:26:02 master slapd[23141]: 7r
Jan 6 10:26:02 master slapd[23141]:
Jan 6 10:26:02 master slapd[23141]: daemon: read activity on 7
Jan 6 10:26:02 master slapd[23141]: connection_get(7)
Jan 6 10:26:02 master slapd[23141]: connection_get(7): got connid=0
Jan 6 10:26:02 master slapd[23141]: connection_read(7): checking for
input on id=0
Jan 6 10:26:02 master slapd[23141]: ber_get_next on fd 7 failed
errno=11 (Resource temporarily unavailable)
Jan 6 10:26:02 master slapd[23141]: do_modify
Jan 6 10:26:02 master slapd[23141]: do_modify: dn
(uid=administrator,ou=Users,o=iowanews,o=computility)
Jan 6 10:26:02 master slapd[23141]: modifications:
Jan 6 10:26:02 master slapd[23141]: ^Ireplace: userpassword
Jan 6 10:26:02 master slapd[23141]: daemon: select: listen=6
active_threads=1 tvp=NULL
Jan 6 10:26:02 master slapd[23141]: ^Ireplace: lmPassword
Jan 6 10:26:02 master slapd[23141]: ^Ireplace: ntpassword
Jan 6 10:26:02 master slapd[23141]: conn=0 op=1 MOD
dn="uid=administrator,ou=Users,o=iowanews,o=computility"
Jan 6 10:26:02 master slapd[23141]: dn2entry_r: dn:
"UID=ADMINISTRATOR,OU=USERS,O=IOWANEWS,O=COMPUTILITY"
Jan 6 10:26:02 master slapd[23141]: => dn2id(
"UID=ADMINISTRATOR,OU=USERS,O=IOWANEWS,O=COMPUTILITY" )
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open( "dn2id.dbb", 9,
600 )
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (cache 0)
Jan 6 10:26:02 master slapd[23141]: <= dn2id 652
Jan 6 10:26:02 master slapd[23141]: => id2entry_r( 652 )
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open( "id2entry.dbb",
9, 600 )
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (cache 1)
Jan 6 10:26:02 master slapd[23141]: => str2entry
Jan 6 10:26:02 master slapd[23141]: <=
str2entry(uid=administrator,ou=Users,o=iowanews,o=computility) -> -1
(0x8180300)
Jan 6 10:26:02 master slapd[23141]: <= id2entry_r( 652 ) 0x8180300 (disk)
Jan 6 10:26:02 master slapd[23141]: ====> cache_return_entry_r( 652 ):
created (0)
Jan 6 10:26:02 master slapd[23141]: ldbm_back_modify:
Jan 6 10:26:02 master slapd[23141]: dn2entry_w: dn:
"UID=ADMINISTRATOR,OU=USERS,O=IOWANEWS,O=COMPUTILITY"
Jan 6 10:26:02 master slapd[23141]: => dn2id(
"UID=ADMINISTRATOR,OU=USERS,O=IOWANEWS,O=COMPUTILITY" )
Jan 6 10:26:02 master slapd[23141]: ====>
cache_find_entry_dn2id("UID=ADMINISTRATOR,OU=USERS,O=IOWANEWS,O=COMPUTILITY"):
652 (1 tries)
Jan 6 10:26:02 master slapd[23141]: <= dn2id 652 (in cache)
Jan 6 10:26:02 master slapd[23141]: => id2entry_w( 652 )
Jan 6 10:26:02 master slapd[23141]: ====> cache_find_entry_id( 652 )
"uid=administrator,ou=Users,o=iowanews,o=computility" (found) (1 tries)
Jan 6 10:26:02 master slapd[23141]: <= id2entry_w( 652 ) 0x8180300 (cache)
Jan 6 10:26:02 master slapd[23141]: ldbm_modify_internal:
UID=ADMINISTRATOR,OU=USERS,O=IOWANEWS,O=COMPUTILITY
Jan 6 10:26:02 master slapd[23141]: <= acl_access_allowed: granted to
database root
Jan 6 10:26:02 master slapd[23141]: ldbm_modify_internal: replace
Jan 6 10:26:02 master last message repeated 4 times
Jan 6 10:26:02 master slapd[23141]: oc_check_required entry
(uid=administrator,ou=Users,o=iowanews,o=computility), objectClass "top"
Jan 6 10:26:02 master slapd[23141]: oc_check_required entry
(uid=administrator,ou=Users,o=iowanews,o=computility), objectClass "account"
Jan 6 10:26:02 master slapd[23141]: oc_check_required entry
(uid=administrator,ou=Users,o=iowanews,o=computility), objectClass
"posixAccount"
Jan 6 10:26:02 master slapd[23141]: oc_check_required entry
(uid=administrator,ou=Users,o=iowanews,o=computility), objectClass
"sambaAccount"
Jan 6 10:26:02 master slapd[23141]: oc_check_required entry
(uid=administrator,ou=Users,o=iowanews,o=computility), objectClass "person"
Jan 6 10:26:02 master slapd[23141]: oc_check_required entry
(uid=administrator,ou=Users,o=iowanews,o=computility), objectClass
"organizationalPerson"
Jan 6 10:26:02 master slapd[23141]: oc_check_required entry
(uid=administrator,ou=Users,o=iowanews,o=computility), objectClass
"inetOrgPerson"
Jan 6 10:26:02 master slapd[23141]: oc_check_required entry
(uid=administrator,ou=Users,o=iowanews,o=computility), objectClass
"qmailUser"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "givenName"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "sn"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "uid"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "mail"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "uidNumber"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "cn"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "objectClass"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "gidNumber"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "homeDirectory"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "gecos"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "description"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "pwdLastSet"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "logonTime"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "logoffTime"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "kickoffTime"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "pwdCanChange"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "pwdMustChange"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "displayName"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "acctFlags"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "rid"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type
"mailMessageStore"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "accountStatus"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "creatorsName"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "createTimestamp"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type
"mailAlternateAddress"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "loginShell"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "userPassword"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "lmPassword"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "ntPassword"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "modifiersName"
Jan 6 10:26:02 master slapd[23141]: oc_check_allowed type "modifyTimestamp"
Jan 6 10:26:02 master slapd[23141]: => index_entry_del( 652,
"uid=administrator,ou=Users,o=iowanews,o=computility" )
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open(
"givenName.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 2)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
...<Repeated 15 times>
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open( "sn.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 3)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
...<Repeated 15 times>
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open( "uid.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 4)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open( "mail.dbb", 9,
600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 5)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
...<Repeated 19 times>
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open(
"uidNumber.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 6)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open( "cn.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 7)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
...<Repeated 14 times>
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change -1
...<Repeated 9 times>
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
...<Repeated 5 times>
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open(
"objectClass.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 8)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
...<Repeated 7 times>
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open(
"gidNumber.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 9)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open( "rid.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 10)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open(
"mailAlternateAddress.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: ldbm_cache_open (blksize 8192)
(maxids 2046) (maxindirect 5)
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (opened 11)
Jan 6 10:26:02 master slapd[23141]: => key_change(DELETE,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
...<Repeated 4 times>
Jan 6 10:26:02 master slapd[23141]: <= index_entry_del( 652,
"uid=administrator,ou=Users,o=iowanews,o=computility" ) success
Jan 6 10:26:02 master slapd[23141]: => index_entry_add( 652,
"uid=administrator,ou=Users,o=iowanews,o=computility" )
Jan 6 10:26:02 master slapd[23141]: => ldbm_cache_open(
"givenName.dbb", 9, 600 )
Jan 6 10:26:02 master slapd[23141]: <= ldbm_cache_open (cache 2)
Jan 6 10:26:02 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:02 master slapd[23141]: <= key_change 0
...<Repeated 16 times>
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open( "sn.dbb", 9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 3)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
...<Repeated 15 times>
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open( "uid.dbb", 9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 4)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open( "mail.dbb", 9,
600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 5)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
...<Repeated 19 times>
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open(
"uidNumber.dbb", 9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 6)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open( "cn.dbb", 9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 7)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
...<Repeated 30 times>
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open(
"objectClass.dbb", 9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 8)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
....<Repeated 7 times>
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open(
"gidNumber.dbb", 9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 9)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open( "rid.dbb", 9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 10)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open(
"mailAlternateAddress.dbb", 9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 11)
Jan 6 10:26:03 master slapd[23141]: => key_change(ADD,28c)
Jan 6 10:26:03 master slapd[23141]: <= key_change 0
....<Repeated 4 times>
Jan 6 10:26:03 master slapd[23141]: <= index_entry_add( 652,
"uid=administrator,ou=Users,o=iowanews,o=computility" ) success
Jan 6 10:26:03 master slapd[23141]: => id2entry_add( 652,
"uid=administrator,ou=Users,o=iowanews,o=computility" )
Jan 6 10:26:03 master slapd[23141]: => ldbm_cache_open( "id2entry.dbb",
9, 600 )
Jan 6 10:26:03 master slapd[23141]: <= ldbm_cache_open (cache 1)
Jan 6 10:26:03 master slapd[23141]: <= id2entry_add 0
Jan 6 10:26:03 master slapd[23141]: send_ldap_result: conn=0 op=1 p=3
Jan 6 10:26:03 master slapd[23141]: send_ldap_result: 0::
Jan 6 10:26:03 master slapd[23141]: send_ldap_response: msgid=2 tag=103
err=0
Jan 6 10:26:03 master slapd[23141]: conn=0 op=1 RESULT tag=103 err=0 text=
Jan 6 10:26:03 master slapd[23141]: ====> cache_return_entry_w( 652 ):
returned (0)
Jan 6 10:26:04 master slapd[23141]: daemon: activity on 1 descriptors
Jan 6 10:26:04 master slapd[23141]: daemon: activity on:
Jan 6 10:26:04 master slapd[23141]: 7r
Jan 6 10:26:04 master slapd[23141]:
Jan 6 10:26:04 master slapd[23141]: daemon: read activity on 7
Jan 6 10:26:04 master slapd[23141]: connection_get(7)
Jan 6 10:26:04 master slapd[23141]: connection_get(7): got connid=0
Jan 6 10:26:04 master slapd[23141]: connection_read(7): checking for
input on id=0
Jan 6 10:26:04 master slapd[23141]: ber_get_next on fd 7 failed errno=0
(Success)
Jan 6 10:26:04 master slapd[23141]: connection_read(7): input error=-2
id=0, closing.
Jan 6 10:26:04 master slapd[23141]: connection_closing: readying conn=0
sd=7 for close
Jan 6 10:26:04 master slapd[23141]: connection_close: conn=0 sd=7
Jan 6 10:26:04 master slapd[23141]: daemon: removing 7
Jan 6 10:26:04 master slapd[23141]: conn=-1 fd=7 closed
Jan 6 10:26:04 master slapd[23141]: daemon: select: listen=6
active_threads=0 tvp=NULL
Jan 6 10:26:04 master slapd[23141]: daemon: activity on 1 descriptors
Jan 6 10:26:04 master slapd[23141]: daemon: select: listen=6
active_threads=0 tvp=NULL