From owner-freebsd-questions@FreeBSD.ORG  Mon Jul 20 08:22:23 2009
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 4B26B1065673
	for <freebsd-questions@freebsd.org>;
	Mon, 20 Jul 2009 08:22:23 +0000 (UTC)
	(envelope-from ruel.freebsd@gmail.com)
Received: from mail-yx0-f181.google.com (mail-yx0-f181.google.com
	[209.85.210.181])
	by mx1.freebsd.org (Postfix) with ESMTP id F13BE8FC15
	for <freebsd-questions@freebsd.org>;
	Mon, 20 Jul 2009 08:22:22 +0000 (UTC)
	(envelope-from ruel.freebsd@gmail.com)
Received: by yxe11 with SMTP id 11so3392673yxe.3
	for <freebsd-questions@freebsd.org>;
	Mon, 20 Jul 2009 01:22:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:received:in-reply-to:references
	:date:message-id:subject:from:to:cc:content-type;
	bh=5raqJNt9TR9k9GY13sWlHbz0ycz3oCQJi5J6TuWCht0=;
	b=eLCCmYZI5iwfhDDKCb2DI06v5CO98gFtgt6h1jxzin76rVWyVxvWxZ/ORkRfIOi1r1
	G/QFbD7xi2C4JCw+EEKpVod59YiK2KMvZpPHBwbhEaNL81XZUzoYJL3DQE0+/zRzS9Yb
	H1yI4lmhrssQ+Qnn4y75ibRo+ZXU6MJM5Mj0M=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type;
	b=qyJSNymggMVFNhcax1Zam7AYh4YeOAR4q1Znd+gXRvVJ8exbvAIiO3Z2Sq/9etlYei
	4Xs6IzacMCTTzeNIA7VE+BoG2mUjxcv77dNhEerWQDq428ds1C5J8WKi4f3PdHTqHn4Q
	UALp4o3k6FpLRQsdzJgAXBqgjaMzkM4jXLGzw=
MIME-Version: 1.0
Received: by 10.101.69.6 with SMTP id w6mr5840498ank.6.1248078142255; Mon, 20 
	Jul 2009 01:22:22 -0700 (PDT)
In-Reply-To: <57200BF94E69E54880C9BB1AF714BBCB5DEA71@w2003s01.double-l.local>
References: <ee9dc2b40907171829r5afbc885u1f84b2054ff4f5e5@mail.gmail.com>
	<200907180225.n6I2PaES071268@banyan.cs.ait.ac.th>
	<ee9dc2b40907172002l1111749emcc77f3331434ac54@mail.gmail.com>
	<200907180311.n6I3B063071564@banyan.cs.ait.ac.th>
	<ee9dc2b40907172025y3eb04041x8ecb28b099c8845c@mail.gmail.com>
	<200907180343.n6I3hrCR071833@banyan.cs.ait.ac.th>
	<ee9dc2b40907172153h674fe2a9ua2a33be3d6054086@mail.gmail.com>
	<20090719112802.GA77843@ei.bzerk.org>
	<ee9dc2b40907192237x3c65b9cy11ce9ba5f8687891@mail.gmail.com>
	<57200BF94E69E54880C9BB1AF714BBCB5DEA71@w2003s01.double-l.local>
Date: Mon, 20 Jul 2009 16:22:22 +0800
Message-ID: <ee9dc2b40907200122v62cc58d2jea0e59e9263f23f5@mail.gmail.com>
From: Ruel Luchavez <ruel.freebsd@gmail.com>
To: Johan Hendriks <Johan@double-l.nl>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-questions@freebsd.org
Subject: Re: Samba PDC with LDAP backend
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Jul 2009 08:22:23 -0000

On Mon, Jul 20, 2009 at 4:04 PM, Johan Hendriks <Johan@double-l.nl> wrote:

> >> On Sat, Jul 18, 2009 at 12:53:40PM +0800, Ruel Luchavez typed:
> >> > On Sat, Jul 18, 2009 at 11:43 AM, Olivier Nicole <on@cs.ait.ac.th>
> >> wrote:
> >> >
> >> > >
> >> > > > Still it does not start the LDAP, hers my /etc/rc.conf:
> >> > > >
> >> > > >         slapd_flags='-h
> "ldapi://%2fvar%2frun%2fopenldap%2fldapi/
> >> > > ldaps://
> >> > > > / ldap://127.0.0.1/"'
> >>
> >> You try to start slapd with ssl/tls support (ldaps), but I didn't see
> any
> >> TLS parameters in the slapd.conf file you posted.
> >>
> >> Ruben
> >>
> >>
> >Hey Ruben,
>
> >Is it necessary to have ssl/tls support?
>
> >My goal is to build a Samba PDC on FreeBSD with a ldap backend. This
> will
> >not authenticate ssh users just a plain samba server for our windows
> >clients.
>
>
> >More ideas are very WELCOME...
>
>
> >Thanks.....:-)
> >--
> >Rhuel
> >FreeBSD user since 6.0
> >Happy BSD use...
> >Country:Philippines
> >Zip Code:8000
>
> You do not need to add ssl/tls it is some extra security.
> But First try to make sure the ldap server start.
> 192.168.5.0 is nota n ipadres but a network, i do not know fors ure but
> i thougt it need an ipadres like 192.168.5.1
>
> But try this one First and look i fit starts.
> slapd_flags='-h \"ldapi://%2fvar%2frun%2fopenldap%2fldapi/
> ldap://0.0.0.0/ ldap://127.0.0.1/\"'
>
> It will listen on all your ip's available on your system.
>
> If it does still not start then look at the configuration of your
> slapd.conf file
>
> Regards,
> Johan Hendriks
> (Sylhouette)
>
>
>
>
> No virus found in this outgoing message.
> Checked by AVG - www.avg.com
> Version: 8.5.392 / Virus Database: 270.13.20/2249 - Release Date:
> 07/19/09 17:59:00
>

Hey Mr. Johan (Sylhoutte)

Thanks for your reply, are you the author of this link? because I posted a
reply on your comment their

http://forums.freebsd.org/showthread.php?t=770&page=2

But anyway..Thanks for your time!!! Back to my problem

I know this is running
 >>slapd_flags='-h \"ldapi://%2fvar%2frun%2fopenldap%2fldapi/
ldap://0.0.0.0/ ldap://127.0.0.1/\"'

as is issue a command ps -aux | grep slap, hers whats the box give to me
#ps -aux | grep slap
ldap   1273  0.0  6.6 341992  7816  ??  Is    4:17PM   0:00.14
/usr/local/libexec/slapd -h ldapi://%2fvar%2frun%2fopenldap%2fldapi/
ldaps://127.0.0.1/ ldap://192.168.5.200/ -u l

Does it means it is running OR not?

and her's my slapd.conf

include         /usr/local/etc/openldap/schema/core.schema
include         /usr/local/etc/openldap/schema/cosine.schema
include         /usr/local/etc/openldap/schema/inetorgperson.schema
include         /usr/local/etc/openldap/schema/misc.schema
include         /usr/local/etc/openldap/schema/nis.schema
include         /usr/local/etc/openldap/schema/openldap.schema
include         /usr/local/etc/openldap/schema/samba.schema

loglevel 256

pidfile         /var/run/openldap/slapd.pid
argsfile        /var/run/openldap/slapd.args

#Additional config
#access to attrs=userpPassword
#       by dn="uid=root,ou=People,dc=mydomain,dc=local" write
#       by dn="cn=Manager,dc=mydomain,dc=local" write
#       by anonymoud auth
#       by self write
#       by * none
#access to dn.base=""by * read
#access to *
#       by dn="cn=Manager,dc=mydomain,dc=local" write
#       by * read

# Load dynamic backend modules:
modulepath      /usr/local/libexec/openldap
moduleload      back_bdb

#######################################################################
# BDB database definitions
#######################################################################

database        bdb
suffix          "dc=mydomain,dc=local"
rootdn          "cn=Manager,dc=mydomain,dc=local"
#rootpw = very-secure-password
rootpw          secret

directory       /usr/local/var/db/openldap-data

# Indices to maintain

index   objectClass     eq
index   cn              pres,sub,eq
index   sn              pres,sub,eq
index   uid             pres,sub,eq
index   displayName     pres,sub,eq
index   uidNumber               eq
index   gidNumber               eq
index   memberUID               eq
index   sambaSID                eq
index   sambaPrimaryGroupSID    eq
index   sambaDomainName         eq
index   default                 sub


Hoping you have more ideas on this...

Thanks for your immediate reply..
-- 

rHueL
FreeBSD user since 6.0
Happy BSD use...
Country:Philippines
Zip Code:8000