Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 20 Aug 2024 18:39:06 +0100
From:      Norman Gray <gray@nxg.name>
To:        FreeBSD Questions <freebsd-questions@freebsd.org>
Subject:   ypldap and ypserv -- frenemies?
Message-ID:  <90F7E969-FBC8-4CD9-A62B-D2E84B8953ED@nxg.name>
next in thread | raw e-mail | index | archive | help 

Greetings.

I'm trying to use ypldap, to ease one stage in a move away from NIS.  I h=
ave a test/transitional configuration which works when I invoke ypldap wi=
th the -d flag (which avoids daemonisation), but which _doesn't_ work whe=
n I invoke it the expected way, daemonised.

'Doesn't work' here, means that a client querying the daemonised ypldap s=
erver gets a 'do_ypcall: clnt_call: RPC: Unable to receive; errno =3D Con=
nection refused' response.  It gets a normal working response when it que=
ries the undaemonised one.

I'm perplexed at why this should be so.  It's _presumably_ something to d=
o with the permissions of the _ypldap user, but I haven't done anything c=
lever there.

I've confirmed that the _ypldap user can do the relevant LDAP lookup.

An odd thing is that the /etc/rc.d/ypldap script includes

    ypldap_precmd()
    {
            force_depend ypserv nis_server || return 1
    }

That seems to include a dependency on ypserv, but as the ypldap(8) manpag=
e very intelligibly notes, 'ypldap has the same role as ypserv(8) and the=
 two daemons are exclusive.'  And when I try to start ypldap that way, I =
get a warning

    /etc/rc.d/ypserv: WARNING: NIS domainname(1) is not set.

but ypserv does start.  If I do the basic configuration to let ypserv sta=
rt without error, I still don't get a working response from ypldap (and I=
 don't really expect to in that case).

The only online commentary I can find is at [1], from 2016, which seems t=
o be reporting similar behaviour.

I feel I'm substantially misunderstanding something.  Any ideas?

Best wishes,

Norman

[1] https://groups.google.com/g/muc.lists.freebsd.stable/c/nO0NMaSbD7o


-- =

Norman Gray  :  https://nxg.me.uk

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?90F7E969-FBC8-4CD9-A62B-D2E84B8953ED>