[Date Prev][Date Next] [Chronological] [Thread] [Top]

new install only starts on boot

To: OpenLDAP <openldap-software@OpenLDAP.org>
Subject: new install only starts on boot
From: Robert Fitzpatrick <lists@webtent.net>
Date: Thu, 24 Mar 2005 17:44:34 -0500
Organization: WebTent Networking, Inc.

I am installed on FreeBSD 5.3 the port for openldap-sasl-2.2.23, which
starts fine on boot, but will not restart. I get the error 'main: TLS
init def ctx failed: -1' in the debug.log even if TLS options are not
setup. I take a default slapd.conf file and adjust to my domain and it
will not restart. Does the SASL all have to be setup in this
openldap-sasl port before the server will even start? I have the Cyrus
IMAP working with SASL+krb5 now fine. I compared my slapd.conf file to
one on another server with the standard openldap port without SASL and
looks fine, also checked permissions, etc. How can I troubleshoot this
further? There is an krb5 key in the keytab file for the host and ldap
service, but again, I don't even have these things enabled in ldap at
the moment, just trying to get a successful restart.

The only error seen in the logs besides the above is there during boot
as well:

Mar 23 11:27:12 host slapd[456]: SQL engine 'mysql' not supported
Mar 23 11:27:12 host slapd[456]: auxpropfunc error no mechanism
available

However, I have googled this and it seems that it may be harmless and
other services using SASL, such as imapd, spit out the same thing.

Here is some info from my setup:

slap.conf:
include         /usr/local/etc/openldap/schema/core.schema
loglevel        4196
pidfile         /var/run/openldap/slapd.pid
argsfile        /var/run/openldap/slapd.args
database        bdb
suffix          "dc=domain,dc=tld"
rootdn          "cn=Manager,dc=domain,dc=tld"
rootpw          secret
directory       /var/db/openldap-data
index   objectClass     eq

host# ls -la /usr/local/etc/openldap/
total 40
drwxr-xr-x   5 ldap  ldap    512 Mar 19 18:44 .
drwxr-xr-x  15 root  wheel  1536 Mar 24 10:15 ..
drwxr-xr-x   2 ldap  ldap    512 Mar 24 10:15 certs
-rw-r--r--   1 ldap  ldap   8879 Nov 28 16:55 ldap.conf
drwxr-xr-x   3 ldap  ldap   1024 Mar 19 18:44 schema
-rw-r--r--   1 ldap  ldap    314 Mar 24 09:58 slapd.access
-rw-------   1 ldap  ldap   2976 Mar 24 10:23 slapd.conf
host# ls -la /usr/local/etc/openldap/schema
total 338
drwxr-xr-x  3 ldap  ldap   1024 Mar 19 18:44 .
drwxr-xr-x  5 ldap  ldap    512 Mar 19 18:44 ..
-r--r--r--  1 ldap  ldap  19562 Mar 19 18:44 core.schema
host# ls -la /var/run/openldap/
total 4
drwxr-xr-x  2 ldap  ldap    512 Mar 24 15:31 .
drwxr-xr-x  6 root  wheel  1024 Mar 24 10:21 ..
srwxr-xr-x  1 root  ldap      0 Mar 24 15:31 ldapi
host# ls -la /var/db/openldap-data
total 568
drwx------   2 ldap  ldap      512 Mar 23 11:27 .
drwxr-xr-x  11 root  wheel     512 Mar 24 15:21 ..
-rw-------   1 ldap  ldap     8192 Mar 24 10:01 __db.001
-rw-------   1 ldap  ldap   270336 Mar 24 10:01 __db.002
-rw-------   1 ldap  ldap    98304 Mar 24 10:01 __db.003
-rw-------   1 ldap  ldap   368640 Mar 24 10:01 __db.004
-rw-------   1 ldap  ldap    24576 Mar 24 10:01 __db.005
-rw-------   1 ldap  ldap     8192 Mar 24 10:01 dn2id.bdb
-rw-------   1 ldap  ldap    32768 Mar 24 10:01 id2entry.bdb
-rw-------   1 ldap  ldap    44451 Mar 24 10:01 log.0000000001

-- 
Robert

Follow-Ups:
- Re: new install only starts on boot
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: Using "keytool" to create security certificates for OpenLDAP
Next by Date: Re: Using "keytool" to create security certificates for OpenLDAP
Index(es):
- Chronological
- Thread