[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
RE: Solaris 10 Native LDAP Client TLS
Did you try turning on logging on the server to see what sendmail is
trying to do?
Did you try using ldapsearch to see if you can simulate what sendmail is
doing?
Roy
________________________________
From: openldap-technical-bounces+roy.marantz=deshaw.com@openldap.org
[mailto:openldap-technical-bounces+roy.marantz=deshaw.com@openldap.org]
On Behalf Of farhan ahmed
Sent: Monday, March 17, 2008 9:02 AM
To: openldap-technical@openldap.org
Subject: RE: Solaris 10 Native LDAP Client TLS
Hi Guys,
I have done it for Solaris 10 but now I am facing problem in Solaris 9.
Please help me
Still no luck with LDAP native client on Solaris 9. I am getting
following message
Mar 16 02:02:59 web04 sendmail[3700]: [ID 293258 mail.warning] libsldap:
Status: 81 Mesg: openConnection: simple bind failed - Can't contact LDAP
server
But when I run /usr/lib/ldap/ldap_cachemgr -g, I get following which
shows there is no problem
cachemgr configuration:
server debug level 0
server log file "/var/ldap/cachemgr.log"
number of calls to ldapcachemgr 19
cachemgr cache data statistics:
Configuration refresh information:
Previous refresh time: 2008/03/17 23:55:23
Next refresh time: 2008/03/18 00:55:23
Server information:
Previous refresh time: 2008/03/17 23:55:23
Next refresh time: 2008/03/18 00:05:23
server: 203.221.221.83, status: UP
Cache data information:
Maximum cache entries: 256
Number of cache entries: 0
ldapclient -vvv manual -a defaultServerList=10.10.10.10 -a
defaultSearchBase=dc=test,dc=com -a authenticationMethod=tls:simple -a
credentialLevel=proxy -a proxyDN=cn=proxyagent,ou=profile,dc=test,dc=com
-a proxyPassword=test
Note: Same command works for Solaris 10
I really want to use LDAP native client rather than openldap client
which is hassle to install gcc padle pam_ldap etc on 50 servers.
Please help me guys.
Thanks,
Farhan
________________________________
From: farhhanahmed@hotmail.com
To: openldap-technical@openldap.org
Subject: Solaris 10 Native LDAP Client TLS
Date: Fri, 14 Mar 2008 11:55:59 +0000
Hello Guys,
I am having some issues to configure LDAP Native client with
TLS. Please help me to sort out this issue
LDAP Server: Linux (OpenLdap),
LDAP Client: Solaris 10 (Native Client)
When I run following command to test, it works fine,
ldapsearch -v -h test -p 636 -Z -P /var/ldap/cert8.db -b
"dc=test,dc=com" -s base "objectclass=*"
ldapsearch: started Fri Mar 14 18:11:57 2008
ldap_init( test, 636 )
filter pattern: objectclass=*
returning: ALL
filter is: (objectclass=*)
version: 1
dn: dc=test,dc=com
objectClass: dcObject
objectClass: organization
o: test.com web site
dc: test
1 matches
But When I run ldapclient command to initialize ldapclient, it
doesn't work, please guide me where I am doing wrong
ldapclient -v manual -a defaultServerList=10.10.10.10
-a defaultSearchBase=dc=test,dc=com
-a authenticationMethod=tls:simple
-a serviceAuthenticationMethod=pam_ldap:tls:simple
-a serviceAuthenticationMethod=keyserv:tls:simple
-a serviceAuthenticationMethod=passwd-cmd:tls:simple
-a credentialLevel=proxy
-a proxyDN=cn=Manager,ou=People,dc=test,dc=com
-a proxyPassword=passwd
After that when I run ldaplist command, I get following in
/var/adm/messages
Mar 14 18:15:16 subx05-t1 nfs4cbd[1638]: [ID 293258
daemon.warning] libsldap: Status: 91 Mesg: openConnection: failed to
initialize
TLS security (security library: bad database.)
Please help me guys :) I know I am very near to get it working
Thanks,
Farhan
________________________________
at CarPoint.com.au It's simple! Sell your car for just $30
<http://a.ninemsn.com.au/b.aspx?URL=http://secure-au.imrworldwide.com/cg
i-bin/a/ci_450304/et_2/cg_801459/pi_1004813/ai_859641&_t=762955845&_r=ti
g_OCT07&_m=EXT>
________________________________
at CarPoint.com.au It's simple! Sell your car for just $30
<http://a.ninemsn.com.au/b.aspx?URL=http%3A%2F%2Fsecure%2Dau%2Eimrworldw
ide%2Ecom%2Fcgi%2Dbin%2Fa%2Fci%5F450304%2Fet%5F2%2Fcg%5F801459%2Fpi%5F10
04813%2Fai%5F859641&_t=762955845&_r=tig_OCT07&_m=EXT>