Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 20 Jul 2009 16:22:22 +0800
From:      Ruel Luchavez <ruel.freebsd@gmail.com>
To:        Johan Hendriks <Johan@double-l.nl>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: Samba PDC with LDAP backend
Message-ID:  <ee9dc2b40907200122v62cc58d2jea0e59e9263f23f5@mail.gmail.com>
In-Reply-To: <57200BF94E69E54880C9BB1AF714BBCB5DEA71@w2003s01.double-l.local>
References:  <ee9dc2b40907171829r5afbc885u1f84b2054ff4f5e5@mail.gmail.com> <200907180225.n6I2PaES071268@banyan.cs.ait.ac.th> <ee9dc2b40907172002l1111749emcc77f3331434ac54@mail.gmail.com> <200907180311.n6I3B063071564@banyan.cs.ait.ac.th> <ee9dc2b40907172025y3eb04041x8ecb28b099c8845c@mail.gmail.com> <200907180343.n6I3hrCR071833@banyan.cs.ait.ac.th> <ee9dc2b40907172153h674fe2a9ua2a33be3d6054086@mail.gmail.com> <20090719112802.GA77843@ei.bzerk.org> <ee9dc2b40907192237x3c65b9cy11ce9ba5f8687891@mail.gmail.com> <57200BF94E69E54880C9BB1AF714BBCB5DEA71@w2003s01.double-l.local>

next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jul 20, 2009 at 4:04 PM, Johan Hendriks <Johan@double-l.nl> wrote:

> >> On Sat, Jul 18, 2009 at 12:53:40PM +0800, Ruel Luchavez typed:
> >> > On Sat, Jul 18, 2009 at 11:43 AM, Olivier Nicole <on@cs.ait.ac.th>
> >> wrote:
> >> >
> >> > >
> >> > > > Still it does not start the LDAP, hers my /etc/rc.conf:
> >> > > >
> >> > > >         slapd_flags='-h
> "ldapi://%2fvar%2frun%2fopenldap%2fldapi/
> >> > > ldaps://
> >> > > > / ldap://127.0.0.1/"'
> >>
> >> You try to start slapd with ssl/tls support (ldaps), but I didn't see
> any
> >> TLS parameters in the slapd.conf file you posted.
> >>
> >> Ruben
> >>
> >>
> >Hey Ruben,
>
> >Is it necessary to have ssl/tls support?
>
> >My goal is to build a Samba PDC on FreeBSD with a ldap backend. This
> will
> >not authenticate ssh users just a plain samba server for our windows
> >clients.
>
>
> >More ideas are very WELCOME...
>
>
> >Thanks.....:-)
> >--
> >Rhuel
> >FreeBSD user since 6.0
> >Happy BSD use...
> >Country:Philippines
> >Zip Code:8000
>
> You do not need to add ssl/tls it is some extra security.
> But First try to make sure the ldap server start.
> 192.168.5.0 is nota n ipadres but a network, i do not know fors ure but
> i thougt it need an ipadres like 192.168.5.1
>
> But try this one First and look i fit starts.
> slapd_flags='-h \"ldapi://%2fvar%2frun%2fopenldap%2fldapi/
> ldap://0.0.0.0/ ldap://127.0.0.1/\"'
>
> It will listen on all your ip's available on your system.
>
> If it does still not start then look at the configuration of your
> slapd.conf file
>
> Regards,
> Johan Hendriks
> (Sylhouette)
>
>
>
>
> No virus found in this outgoing message.
> Checked by AVG - www.avg.com
> Version: 8.5.392 / Virus Database: 270.13.20/2249 - Release Date:
> 07/19/09 17:59:00
>

Hey Mr. Johan (Sylhoutte)

Thanks for your reply, are you the author of this link? because I posted a
reply on your comment their

http://forums.freebsd.org/showthread.php?t=770&page=2

But anyway..Thanks for your time!!! Back to my problem

I know this is running
 >>slapd_flags='-h \"ldapi://%2fvar%2frun%2fopenldap%2fldapi/
ldap://0.0.0.0/ ldap://127.0.0.1/\"'

as is issue a command ps -aux | grep slap, hers whats the box give to me
#ps -aux | grep slap
ldap   1273  0.0  6.6 341992  7816  ??  Is    4:17PM   0:00.14
/usr/local/libexec/slapd -h ldapi://%2fvar%2frun%2fopenldap%2fldapi/
ldaps://127.0.0.1/ ldap://192.168.5.200/ -u l

Does it means it is running OR not?

and her's my slapd.conf

include         /usr/local/etc/openldap/schema/core.schema
include         /usr/local/etc/openldap/schema/cosine.schema
include         /usr/local/etc/openldap/schema/inetorgperson.schema
include         /usr/local/etc/openldap/schema/misc.schema
include         /usr/local/etc/openldap/schema/nis.schema
include         /usr/local/etc/openldap/schema/openldap.schema
include         /usr/local/etc/openldap/schema/samba.schema

loglevel 256

pidfile         /var/run/openldap/slapd.pid
argsfile        /var/run/openldap/slapd.args

#Additional config
#access to attrs=userpPassword
#       by dn="uid=root,ou=People,dc=mydomain,dc=local" write
#       by dn="cn=Manager,dc=mydomain,dc=local" write
#       by anonymoud auth
#       by self write
#       by * none
#access to dn.base=""by * read
#access to *
#       by dn="cn=Manager,dc=mydomain,dc=local" write
#       by * read

# Load dynamic backend modules:
modulepath      /usr/local/libexec/openldap
moduleload      back_bdb

#######################################################################
# BDB database definitions
#######################################################################

database        bdb
suffix          "dc=mydomain,dc=local"
rootdn          "cn=Manager,dc=mydomain,dc=local"
#rootpw = very-secure-password
rootpw          secret

directory       /usr/local/var/db/openldap-data

# Indices to maintain

index   objectClass     eq
index   cn              pres,sub,eq
index   sn              pres,sub,eq
index   uid             pres,sub,eq
index   displayName     pres,sub,eq
index   uidNumber               eq
index   gidNumber               eq
index   memberUID               eq
index   sambaSID                eq
index   sambaPrimaryGroupSID    eq
index   sambaDomainName         eq
index   default                 sub


Hoping you have more ideas on this...

Thanks for your immediate reply..
-- 

rHueL
FreeBSD user since 6.0
Happy BSD use...
Country:Philippines
Zip Code:8000



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ee9dc2b40907200122v62cc58d2jea0e59e9263f23f5>