Date: Mon, 20 Jul 2009 16:22:22 +0800 From: Ruel Luchavez <ruel.freebsd@gmail.com> To: Johan Hendriks <Johan@double-l.nl> Cc: freebsd-questions@freebsd.org Subject: Re: Samba PDC with LDAP backend Message-ID: <ee9dc2b40907200122v62cc58d2jea0e59e9263f23f5@mail.gmail.com> In-Reply-To: <57200BF94E69E54880C9BB1AF714BBCB5DEA71@w2003s01.double-l.local> References: <ee9dc2b40907171829r5afbc885u1f84b2054ff4f5e5@mail.gmail.com> <200907180225.n6I2PaES071268@banyan.cs.ait.ac.th> <ee9dc2b40907172002l1111749emcc77f3331434ac54@mail.gmail.com> <200907180311.n6I3B063071564@banyan.cs.ait.ac.th> <ee9dc2b40907172025y3eb04041x8ecb28b099c8845c@mail.gmail.com> <200907180343.n6I3hrCR071833@banyan.cs.ait.ac.th> <ee9dc2b40907172153h674fe2a9ua2a33be3d6054086@mail.gmail.com> <20090719112802.GA77843@ei.bzerk.org> <ee9dc2b40907192237x3c65b9cy11ce9ba5f8687891@mail.gmail.com> <57200BF94E69E54880C9BB1AF714BBCB5DEA71@w2003s01.double-l.local>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jul 20, 2009 at 4:04 PM, Johan Hendriks <Johan@double-l.nl> wrote: > >> On Sat, Jul 18, 2009 at 12:53:40PM +0800, Ruel Luchavez typed: > >> > On Sat, Jul 18, 2009 at 11:43 AM, Olivier Nicole <on@cs.ait.ac.th> > >> wrote: > >> > > >> > > > >> > > > Still it does not start the LDAP, hers my /etc/rc.conf: > >> > > > > >> > > > slapd_flags='-h > "ldapi://%2fvar%2frun%2fopenldap%2fldapi/ > >> > > ldaps:// > >> > > > / ldap://127.0.0.1/"' > >> > >> You try to start slapd with ssl/tls support (ldaps), but I didn't see > any > >> TLS parameters in the slapd.conf file you posted. > >> > >> Ruben > >> > >> > >Hey Ruben, > > >Is it necessary to have ssl/tls support? > > >My goal is to build a Samba PDC on FreeBSD with a ldap backend. This > will > >not authenticate ssh users just a plain samba server for our windows > >clients. > > > >More ideas are very WELCOME... > > > >Thanks.....:-) > >-- > >Rhuel > >FreeBSD user since 6.0 > >Happy BSD use... > >Country:Philippines > >Zip Code:8000 > > You do not need to add ssl/tls it is some extra security. > But First try to make sure the ldap server start. > 192.168.5.0 is nota n ipadres but a network, i do not know fors ure but > i thougt it need an ipadres like 192.168.5.1 > > But try this one First and look i fit starts. > slapd_flags='-h \"ldapi://%2fvar%2frun%2fopenldap%2fldapi/ > ldap://0.0.0.0/ ldap://127.0.0.1/\"' > > It will listen on all your ip's available on your system. > > If it does still not start then look at the configuration of your > slapd.conf file > > Regards, > Johan Hendriks > (Sylhouette) > > > > > No virus found in this outgoing message. > Checked by AVG - www.avg.com > Version: 8.5.392 / Virus Database: 270.13.20/2249 - Release Date: > 07/19/09 17:59:00 > Hey Mr. Johan (Sylhoutte) Thanks for your reply, are you the author of this link? because I posted a reply on your comment their http://forums.freebsd.org/showthread.php?t=770&page=2 But anyway..Thanks for your time!!! Back to my problem I know this is running >>slapd_flags='-h \"ldapi://%2fvar%2frun%2fopenldap%2fldapi/ ldap://0.0.0.0/ ldap://127.0.0.1/\"' as is issue a command ps -aux | grep slap, hers whats the box give to me #ps -aux | grep slap ldap 1273 0.0 6.6 341992 7816 ?? Is 4:17PM 0:00.14 /usr/local/libexec/slapd -h ldapi://%2fvar%2frun%2fopenldap%2fldapi/ ldaps://127.0.0.1/ ldap://192.168.5.200/ -u l Does it means it is running OR not? and her's my slapd.conf include /usr/local/etc/openldap/schema/core.schema include /usr/local/etc/openldap/schema/cosine.schema include /usr/local/etc/openldap/schema/inetorgperson.schema include /usr/local/etc/openldap/schema/misc.schema include /usr/local/etc/openldap/schema/nis.schema include /usr/local/etc/openldap/schema/openldap.schema include /usr/local/etc/openldap/schema/samba.schema loglevel 256 pidfile /var/run/openldap/slapd.pid argsfile /var/run/openldap/slapd.args #Additional config #access to attrs=userpPassword # by dn="uid=root,ou=People,dc=mydomain,dc=local" write # by dn="cn=Manager,dc=mydomain,dc=local" write # by anonymoud auth # by self write # by * none #access to dn.base=""by * read #access to * # by dn="cn=Manager,dc=mydomain,dc=local" write # by * read # Load dynamic backend modules: modulepath /usr/local/libexec/openldap moduleload back_bdb ####################################################################### # BDB database definitions ####################################################################### database bdb suffix "dc=mydomain,dc=local" rootdn "cn=Manager,dc=mydomain,dc=local" #rootpw = very-secure-password rootpw secret directory /usr/local/var/db/openldap-data # Indices to maintain index objectClass eq index cn pres,sub,eq index sn pres,sub,eq index uid pres,sub,eq index displayName pres,sub,eq index uidNumber eq index gidNumber eq index memberUID eq index sambaSID eq index sambaPrimaryGroupSID eq index sambaDomainName eq index default sub Hoping you have more ideas on this... Thanks for your immediate reply.. -- rHueL FreeBSD user since 6.0 Happy BSD use... Country:Philippines Zip Code:8000
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ee9dc2b40907200122v62cc58d2jea0e59e9263f23f5>