[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
LDAP/PAM First time
- To: openldap-technical@openldap.org
- Subject: LDAP/PAM First time
- From: Rus Foster <vaserv@gmail.com>
- Date: Tue, 4 May 2010 11:01:02 +0100
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:date:message-id :subject:from:to:content-type; bh=51JEWkWhhk1JwyBwxRTB2dwobIKSMIKLCubTkLQs+mA=; b=BDgaLGsyV1PeeOTKiFvs/qJAdhK++CJenmUdbXc+jDWODHpEYZmSGaaV3nHSSLUg0r 6zTq98GBdfgcp8qPNFmDRjtTDZFUg9dq+FnWb7cqTiUaxowDlYfj+1N/hV0dKw5dSqff xNLjO0JfGZ1DEpYvOV7Ch600VAwMhQcRID4/8=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=rTCAuep0teNUJ5QsLyq1tQ/VTcmabEuyZ8d5ZNvW2xRKqzZB7nWaq5gnK+coc95xt8 17NjpulzuSC/IwfTQkhR3AozstOyJmmMIgwze/eXP8TvaxbqAInHu1pwvVWNbxz8422e kj4/3XaTL8JabrNHGAYIBYsfOPYV/qupOAfTw=
HI
I'm taking my first steps into setting up an OpenLDAP/PAM setup and
I've managed to get the server + client speaking but I think I might
of screwed up my schemas or got myself very confused with some
googling. Current setup
Centos 5.x latest
Server
[root@host-95-154-194-53 tmp]# rpm -qa | grep -i openldap
openldap-2.3.43-3.el5
openldap-clients-2.3.43-3.el5
openldap-servers-2.3.43-3.el5
[root@host-95-154-194-53 tmp]# cat /etc/openldap/slapd.conf
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
logfile /var/log/openldap
allow bind_v2
pidfile /var/run/openldap/slapd.pid
argsfile /var/run/openldap/slapd.args
access to *
by anonymous auth
by self write
by * read
database bdb
suffix "dc=damnvps,dc=com"
rootdn "cn=Manager,dc=damnvps,dc=com"
rootpw {SSHA}EcUcIEBYYT1VfVsHmbRsbLuGfctcZhUD
directory /var/lib/ldap
index objectClass eq
Imported ldif's (***** designates next file break)
File base.ldif
dn: dc=damnvps,dc=com
dc: damnvps
objectClass: top
objectClass: domain
dn: ou=Hosts,dc=damnvps,dc=com
ou: Hosts
objectClass: top
objectClass: organizationalUnit
dn: ou=Rpc,dc=damnvps,dc=com
ou: Rpc
objectClass: top
objectClass: organizationalUnit
dn: ou=Services,dc=damnvps,dc=com
ou: Services
objectClass: top
objectClass: organizationalUnit
dn: nisMapName=netgroup.byuser,dc=damnvps,dc=com
nismapname: netgroup.byuser
objectClass: top
objectClass: nisMap
dn: ou=Mounts,dc=damnvps,dc=com
ou: Mounts
objectClass: top
objectClass: organizationalUnit
dn: ou=Networks,dc=damnvps,dc=com
ou: Networks
objectClass: top
objectClass: organizationalUnit
dn: ou=People,dc=damnvps,dc=com
ou: People
objectClass: top
objectClass: organizationalUnit
dn: ou=Group,dc=damnvps,dc=com
ou: Group
objectClass: top
objectClass: organizationalUnit
dn: ou=Netgroup,dc=damnvps,dc=com
ou: Netgroup
objectClass: top
objectClass: organizationalUnit
dn: ou=Protocols,dc=damnvps,dc=com
ou: Protocols
objectClass: top
objectClass: organizationalUnit
dn: ou=Aliases,dc=damnvps,dc=com
ou: Aliases
objectClass: top
objectClass: organizationalUnit
dn: nisMapName=netgroup.byhost,dc=damnvps,dc=com
nismapname: netgroup.byhost
objectClass: top
objectClass: nisMap
*****
File group.ldif
*****
dn: cn=rghf,ou=Group,dc=damnvps,dc=com
objectClass: posixGroup
objectClass: top
cn: rghf
userPassword: {crypt}x
gidNumber: 500
*****
File passwd.ldif
****
dn: uid=rghf,ou=People,dc=damnvps,dc=com
uid: rghf
cn: rghf
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
userPassword: {crypt}$1$I6nmZtvf$tbQl9rwZ0qK01i.im9c5l0
shadowLastChange: 14733
shadowMax: 99999
shadowWarning: 7
loginShell: /bin/bash
uidNumber: 500
gidNumber: 500
homeDirectory: /home/rghf
I imported them with
ldapadd -D "cn=Manager,dc=damnvps,dc=com" -W -f /tmp/passwd.ldif-x
ldapadd -D "cn=Manager,dc=damnvps,dc=com" -W -f /tmp/passwd.ldif -x
ldapadd -D "cn=Manager,dc=damnvps,dc=com" -W -f /tmp/hosts.ldif -x
However trying to pull out anything via ldapsearch gives
root@host-95-154-194-53 tmp]# ldapsearch -x
# extended LDIF
#
# LDAPv3
# base <> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#
# search result
search: 2
result: 32 No such object
# numResponses: 1
What have I missed?
thanks
Rus