[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How to confirm --enable-local



On Wed, 2004-03-24 at 15:48, Pierangelo Masarati wrote:
> I guess you are using an older version.  slapd-monitor(5) is available
> for sure since 2.2, but I think also in late 2.1 versions (need to check
> though).
> 
> In any case, to access the socket, you need the identity of the user that
> created the socket, e.g. root, or add write permissions to other (e.g.
> "srwxrwxrwx" permissions, but "s-w--w--w-" suffices.

I'm running 2.1.27 and already tried setting permissions to 777:

esmtp# ls -la /var/run/openldap
total 8
drwxr-xr-x  2 ldap  ldap   512 Mar 24 16:28 .
drwxr-xr-x  6 root  wheel  512 Mar 23 18:44 ..
srwxrwxrwx  1 root  ldap     0 Mar 24 16:28 ldapi
-rw-r--r--  1 root  ldap   111 Mar 24 16:28 slapd.args
-rw-r--r--  1 root  ldap     6 Mar 24 16:28 slapd.pid
esmtp# ldapadd -f test.ldif -H
'ldapi://%2fvar%2frun%2fopenldap%2fldapi/'
adding new entry "ou=Test,dc=webtent,dc=net"
ldapadd: update failed: ou=Test,dc=webtent,dc=net
ldap_add: Strong(er) authentication required (8)
        additional info: modifications require authentication
esmtp# kadmin -l
kadmin> init WEBTENT.NET
Realm max ticket life [unlimited]:
Realm max renewable ticket life [unlimited]:
kadmin: kadm5_create_principal: ldap_add_s: Can't contact LDAP server

As I was saying in my last message I just posted. Even though I have
access permissions on the for the socket setup in slapd.conf, still
cannot write to it.

-- 
Robert