[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
fresh (distro's) installation and cn=config password
- To: openldap-technical@openldap.org
- Subject: fresh (distro's) installation and cn=config password
- From: lejeczek <peljasz@yahoo.co.uk>
- Date: Mon, 23 Jan 2017 16:59:46 +0000
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.co.uk; s=s2048; t=1485190787; bh=DEv2Tai6zqU77/0p46DlJ1ucYYQs5Qwr4RH9FEZiPLA=; h=To:From:Subject:Date:From:Subject; b=mTSobXa3As73aDAp3MAemMAEmhH3ErZmRrePuogwR1cq850yeocbgQx/CAEboEdWqVLgHQkhAs8WfImP2otGI2uDmV139Ch+5DrO0coG3h4+3pmhIDZdHqM9Ep3OJbIlQM3Tw3C5nrd4GP0ghIGo79qzO40ngx34kfKR1TScv3drZJ7xMEuhCfkyuqv2aoGD6egNaN1UBp6X3u65bm6YrtXS7NHHz6NFVWO4LjXZZBKZ5Xo9vHX8pWbX/64Rx65DTX+6dKxoUtxTQM1KeLoZRevA0RsWB62MWSK07mKSW24f1gUrppeXbBy1oq5I27pAPTiBKub/XddQntdvXKFeMw==
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.6.0
hi everybody,
this must be one of the most ancient questions - but
browsing (centos') local docs reveal nothing.
I'd imagine passwords is that first & most important thing
everybody does to make sure slapd is secured, something like
"mysql_secure_installation"
I'm trying to do something I'd think is simple and should
just work, but, I'm wrong, so I do:
slapadd -v -n0 <<EOL
dn: olcDatabase={0}config,cn=config
objectClass: olcDatabaseConfig
olcDatabase: {0}config
olcRootDN: cn=admin,cn=config
olcRootPW:: exxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
EOL
and I get in return:
slapadd: could not add entry
dn="olcDatabase={0}config,cn=config" (line=1): autocreation
of "olcDatabase={-1}frontend" failed
So that question - how does one secure ldap installation?
But I'd insist on not referring something like "slaptest and
convert old school to ..." or .. edit config file(s)
What I think is - I have a clean installation which is
configured in probably best possible way but missing is:
olcRootDN, olcRootPW
How to use slapadd for it? Is slapadd not the right tool for
this?
many thanks,
L.