[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: How to confirm --enable-local
On Wed, 2004-03-24 at 15:48, Pierangelo Masarati wrote:
> I guess you are using an older version. slapd-monitor(5) is available
> for sure since 2.2, but I think also in late 2.1 versions (need to check
> though).
>
> In any case, to access the socket, you need the identity of the user that
> created the socket, e.g. root, or add write permissions to other (e.g.
> "srwxrwxrwx" permissions, but "s-w--w--w-" suffices.
I'm running 2.1.27 and already tried setting permissions to 777:
esmtp# ls -la /var/run/openldap
total 8
drwxr-xr-x 2 ldap ldap 512 Mar 24 16:28 .
drwxr-xr-x 6 root wheel 512 Mar 23 18:44 ..
srwxrwxrwx 1 root ldap 0 Mar 24 16:28 ldapi
-rw-r--r-- 1 root ldap 111 Mar 24 16:28 slapd.args
-rw-r--r-- 1 root ldap 6 Mar 24 16:28 slapd.pid
esmtp# ldapadd -f test.ldif -H
'ldapi://%2fvar%2frun%2fopenldap%2fldapi/'
adding new entry "ou=Test,dc=webtent,dc=net"
ldapadd: update failed: ou=Test,dc=webtent,dc=net
ldap_add: Strong(er) authentication required (8)
additional info: modifications require authentication
esmtp# kadmin -l
kadmin> init WEBTENT.NET
Realm max ticket life [unlimited]:
Realm max renewable ticket life [unlimited]:
kadmin: kadm5_create_principal: ldap_add_s: Can't contact LDAP server
As I was saying in my last message I just posted. Even though I have
access permissions on the for the socket setup in slapd.conf, still
cannot write to it.
--
Robert