[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
rootdn DN is invalid.
Trying to use sasl and kerberos V to authenticate the admin user to the
database through a service ticket. I'm having one problem, though, the
server won't start up with the error message:
/etc/openldap/slapd.conf: line 115: rootdn DN is invalid
Line 115 is:
rootdn "uid=ldapadmin,realm=krbrealm,cn=gssapi,cn=auth"
I'm using openldap 2.1.25, cyrus-sasl-2.1.17, heimdal-0.6-20040113,
, and db-4.2.52, on Solaris 8. (I took your advice Howard, and moved to
Solaris 8).
When I use a standard rootdn DN, like cn=Admin,dc=blah,dc=blah, everything
works out fine, and I get the following features from the capabilities
survey:
{root}60: ldapsearch -x -s base -b "" "(objectclass=*)" +
# extended LDIF
#
# LDAPv3
# base <> with scope base
# filter: (objectclass=*)
# requesting: +
#
#
dn:
structuralObjectClass: OpenLDAProotDSE
namingContexts: dc=blah,dc=edu
supportedControl: 1.2.826.0.1.334810.2.3
supportedControl: 1.3.6.1.4.1.4203.1.10.1
supportedControl: 1.3.6.1.4.1.4203.1.10.2
supportedControl: 2.16.840.1.113730.3.4.2
supportedControl: 2.16.840.1.113730.3.4.18
supportedExtension: 1.3.6.1.4.1.1466.20037
supportedExtension: 1.3.6.1.4.1.4203.1.11.1
supportedExtension: 1.3.6.1.4.1.4203.1.11.3
supportedFeatures: 1.3.6.1.4.1.4203.1.5.1
supportedFeatures: 1.3.6.1.4.1.4203.1.5.2
supportedFeatures: 1.3.6.1.4.1.4203.1.5.3
supportedFeatures: 1.3.6.1.4.1.4203.1.5.4
supportedFeatures: 1.3.6.1.4.1.4203.1.5.5
supportedLDAPVersion: 2
supportedLDAPVersion: 3
supportedSASLMechanisms: GSSAPI
supportedSASLMechanisms: DIGEST-MD5
subschemaSubentry: cn=Subschema
I'm sure this is something really dumb, but I can't find any help online
to solve this particular problem. Thanks for your help, I really
appreciate it.
-jeremy
--
--
+================================================================+
Jeremy Hallum, System Manager , Astronomy, University of Michigan
jhallum@umich.edu::jhallum@dreamt.org
"Audentis Fortuna Iuvat"