[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
FW: Invalid Credentials
I changed these values in the slapd.conf file and = restarted slapd a number of times. I'm leaning toward your second = suggestion regarding how the system was built. I did not build it, but = my understanding is it was a fedora core build with the ldap settings = loaded. Any advice on what/where to check to verify overriding = settings. Thank you! Ps I can easily rebuild the box since it serves no = other function than to server ldap queries
-----Original Message-----
From: Kurt D. Zeilenga [mailto:Kurt@OpenLDAP.org]
Sent: Tuesday, October 26, 2004 5:07 PM
To: Pease, Melanie
Cc: openldap-software@OpenLDAP.org
Subject: RE: Invalid Credentials
This indicates that either the active rootdn = isn't
= cn=Manager,dc=services,dc=egginc,dc=com
the active rootpw isn't
= newpassword
or the server was not built to verification = against
stored plain text passwords. The first two = can
simply be ruled out by checking your = slapd.conf
file is correct and restarting the server to
ensure the specified values are being used.
The latter requires confirming how the server
was built. That is, maybe the server was = built
with --disable-cleartext.
At 05:37 PM 10/25/2004, mpease@egginc.com = wrote:
>Here are the results from slapd -d 255
>
>slapd startup: initiated.
>slapd starting
>daemon: added 6r
>daemon: added 7r
>daemon: select: listen=6 active_threads=0 = tvp=NULL
>daemon: select: listen=7 active_threads=0 = tvp=NULL
>daemon: activity on 1 descriptors
>daemon: new connection on 8
>ldap_pvt_gethostbyname_a: = host=EGGLDAP.services.egginc.com, r=0
>str2filter "(objectclass=*)"
>put_filter: "(objectclass=*)"
>put_filter: simple
>put_simple_filter: = "objectclass=*"
>begin get_filter
>PRESENT
>ber_scanf fmt (m) ber:
>ber_dump: buf=0x09bae3a0 ptr=0x09bae3a0 = end=0x09bae3ad len=13
> 0000: 87 0b 6f 62 6a 65 63 74 = 63 6c 61 73 = 73 = ..objectclass
>end get_filter 0
>daemon: added 8r
>daemon: activity on:
>daemon: select: listen=6 active_threads=0 = tvp=NULL
>daemon: select: listen=7 active_threads=0 = tvp=NULL
>daemon: activity on 1 descriptors
>daemon: activity on: 8r
>daemon: read activity on 8
>connection_get(8)
>connection_get(8): got connid=0
>connection_read(8): checking for input on = id=0
>ber_get_next
>ldap_read: want=8, got=8
> 0000: 30 3e 02 01 01 60 39 = 02 0>...`9.
>ldap_read: want=56, got=56
> 0000: 01 03 04 27 63 6e 3d 4d = 61 6e 61 67 65 72 2c 64 ...'cn=Manager,d
> 0010: 63 3d 73 65 72 76 69 63 = 65 73 2c 64 63 3d 65 67 c=services,dc=eg
> 0020: 67 69 6e 63 2c 64 63 3d = 63 6f 6d 80 0b 6e 65 77 ginc,dc=com..new
> 0030: 70 61 73 73 77 6f 72 = 64 password
>ber_get_next: tag 0x30 len 62 contents:
>ber_dump: buf=0x09bae328 ptr=0x09bae328 = end=0x09bae366 len=62
> 0000: 02 01 01 60 39 02 01 03 = 04 27 63 6e 3d 4d 61 6e ...`9....'cn=Man
> 0010: 61 67 65 72 2c 64 63 3d = 73 65 72 76 69 63 65 73 ager,dc=services
> 0020: 2c 64 63 3d 65 67 67 69 = 6e 63 2c 64 63 3d 63 6f ,dc=egginc,dc=co
> 0030: 6d 80 0b 6e 65 77 70 61 = 73 73 77 6f 72 64 = m..newpassword
>do_bind
>ber_get_next
>ldap_read: want=8 error=Resource temporarily = unavailable
>ber_get_next on fd 8 failed errno=11 (Resource = temporarily unavailable)
>ber_scanf fmt ({imt) ber:
>ber_dump: buf=0x09bae328 ptr=0x09bae32b = end=0x09bae366 len=59
> 0000: 60 39 02 01 03 04 27 63 = 6e 3d 4d 61 6e 61 67 65 `9....'cn=Manage
> 0010: 72 2c 64 63 3d 73 65 72 = 76 69 63 65 73 2c 64 63 r,dc=services,dc
> 0020: 3d 65 67 67 69 6e 63 2c = 64 63 3d 63 6f 6d 80 0b =egginc,dc=com..
> 0030: 6e 65 77 70 61 73 73 77 = 6f 72 = 64 newpassword
>ber_scanf fmt (m}) ber:
>ber_dump: buf=0x09bae328 ptr=0x09bae359 = end=0x09bae366 len=13
> 0000: 00 0b 6e 65 77 70 61 73 = 73 77 6f 72 = 64 = ..newpassword
>>>> dnPrettyNormal: =
>=> = ldap_bv2dn(cn=Manager,dc=services,dc=egginc,dc=com,0)
><= = ldap_bv2dn(cn=Manager,dc=services,dc=egginc,dc=com,0)=0>=> ldap_dn2bv(272)
><= = ldap_dn2bv(cn=Manager,dc=services,dc=egginc,dc=com,272)=0
>=> ldap_dn2bv(272)
><= = ldap_dn2bv(cn=manager,dc=services,dc=egginc,dc=com,272)=0
><<< dnPrettyNormal: = , = rvices,dc=egginc,dc=com>
>do_bind: version=3 = dn="cn=Manager,dc=services,dc=egginc,dc=com" = method=128
>send_ldap_result: conn=0 op=0 p=3
>send_ldap_result: err=49 = matched="" text=""
>send_ldap_response: msgid=1 tag=97 = err=49
>ber_flush: 14 bytes to sd 8
> 0000: 30 0c 02 01 01 61 07 0a = 01 31 04 00 04 00 = 0....a...1....
>ldap_write: want=14, written=14
> 0000: 30 0c 02 01 01 61 07 0a = 01 31 04 00 04 00 = 0....a...1....
>daemon: select: listen=6 active_threads=0 = tvp=NULL
>daemon: select: listen=7 active_threads=0 = tvp=NULL
>daemon: activity on 1 descriptors
>daemon: activity on: 8r
>daemon: read activity on 8
>connection_get(8)
>connection_get(8): got connid=0
>connection_read(8): checking for input on = id=0
>ber_get_next
>ldap_read: want=8, got=0
>
>ber_get_next on fd 8 failed errno=0 = (Success)
>connection_read(8): input error=-2 id=0, = closing.
>connection_closing: readying conn=0 sd=8 for = ""
>connection_close: conn=0 sd=8
>daemon: removing 8
>daemon: select: listen=6 active_threads=0 = tvp=NULL
>daemon: select: listen=7 active_threads=0 = tvp=NULL
>daemon: activity on 1 descriptors
>daemon: select: listen=6 active_threads=0 = tvp=NULL
>daemon: select: listen=7 active_threads=0 = tvp=NULL