samba - Jun 2005 - Problems with testing Openldapserver telnet localhost 389

Hello!
Server Starting is ok: no errormessage:
/usr/lib/openldap/slapd restart

But Testing, not:
amd:~ # telnet localhost 389
Trying 127.0.0.1...
telnet: connect to address 127.0.0.1: Connection refused
Trying ::1...
telnet: connect to address ::1: Connection refused

amd:/usr/lib/openldap # ps -agx | grep lapd
Warning: bad ps syntax, perhaps a bogus '-'? See  
http://procps.sf.net/faq.html
  4788 pts/2    S+     0:00 grep lapd

my sldap.conf:
include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/rfc2307bis.schema
include         /etc/openldap/schema/samba.schema
include         /etc/openldap/schema/yast.schema
include         /etc/openldap/schema/nis.schemas

pidfile         /var/run/slapd/slapd.pid
argsfile        /var/run/slapd/slapd.args

database        ldbm
suffix          "dc=samba,dc=junits"
rootdn          "cn=admin,dc=samba,dc=junits"
rootpw          secret
directory       /var/lib/ldap
cachesize       40000
dbcache         60000000
index           cn,sn,uid,displayName           pres,sub,eq
index           uidNumber,gidNumber             eq
index           sambaSID                        eq
index           sambaPrimaryGroupSID            eq
index           sambaDomainName                 eq
index           objectClass                     pres,eq
index           rid,primaryGroupID              eq
index           default                         sub


access  to dn="."dc=samba,dc=junits"
         by self                 write
         by *                    read


Best regards and many thanks
Andreas

s?n, 05.06.2005 kl. 23.58 skrev Andreas:
> Server Starting is ok: no errormessage:
> /usr/lib/openldap/slapd restart
> 
> But Testing, not:
> amd:~ # telnet localhost 389
> Trying 127.0.0.1...
> telnet: connect to address 127.0.0.1: Connection refused
> Trying ::1...
> telnet: connect to address ::1: Connection refused
slapd is not running, check your logs.

--Tonni
> amd:/usr/lib/openldap # ps -agx | grep lapd
> Warning: bad ps syntax, perhaps a bogus '-'? See  
> http://procps.sf.net/faq.html
>   4788 pts/2    S+     0:00 grep lapd
> 
> my sldap.conf:
> include         /etc/openldap/schema/core.schema
> include         /etc/openldap/schema/cosine.schema
> include         /etc/openldap/schema/inetorgperson.schema
> include         /etc/openldap/schema/rfc2307bis.schema
> include         /etc/openldap/schema/samba.schema
> include         /etc/openldap/schema/yast.schema
> include         /etc/openldap/schema/nis.schemas
> 
> pidfile         /var/run/slapd/slapd.pid
> argsfile        /var/run/slapd/slapd.args
> 
> database        ldbm
> suffix          "dc=samba,dc=junits"
> rootdn          "cn=admin,dc=samba,dc=junits"
> rootpw          secret
> directory       /var/lib/ldap
> cachesize       40000
> dbcache         60000000
> index           cn,sn,uid,displayName           pres,sub,eq
> index           uidNumber,gidNumber             eq
> index           sambaSID                        eq
> index           sambaPrimaryGroupSID            eq
> index           sambaDomainName                 eq
> index           objectClass                     pres,eq
> index           rid,primaryGroupID              eq
> index           default                         sub
> 
> 
> access  to dn="."dc=samba,dc=junits"
>          by self                 write
>          by *                    read
> 
> 
> Best regards and many thanks
> Andreas
-- 
mail: tonye@billy.demon.nl
http://www.billy.demon.nl



!DSPAM:42a3913410226281716564!

Andreas wrote:
> Hello!
> Server Starting is ok: no errormessage:
> /usr/lib/openldap/slapd restart
check with pidof, a startscript succeeding is not a good sign of
success.
>
> But Testing, not:
> amd:~ # telnet localhost 389
> Trying 127.0.0.1...
> telnet: connect to address 127.0.0.1: Connection refused
> Trying ::1...
> telnet: connect to address ::1: Connection refused
check locally with "getent passwd".
>
> amd:/usr/lib/openldap # ps -agx | grep lapd
> Warning: bad ps syntax, perhaps a bogus '-'? See
> http://procps.sf.net/faq.html
>  4788 pts/2    S+     0:00 grep lapd
what is that?
>
> access  to dn="."dc=samba,dc=junits"
>         by self                 write
>         by *                    read
this doesn't look like a valid regex..., and it's not secure either.
Everyone can read your passwords. Read the slapd.access manpage.

hth
 Paul

Tony Earnshaw wrote:
>> I didn't found any logfile about openldap in my /etc/openldap
folder
>> and over "files searching" in the konqueror.
>> Thats my openldap folder:
> 
> slapd will output to logfacility local4. By default that will go to
> syslog, under Linux that's /var/log/messages. Many people edit
> syslog.conf to output local4 logging to another file - I use
> /var/log/slapd.log. How to do this: man syslog.conf, edit syslog.conf
> to output to a new log, kill -HUP syslogd.    
> 
> slapd logs at loglevel 256, which should go far in telling you why
> slapd is not running. 
> 
> --Tonni
JHT added a section on configuring ldap logging and troubleshooting.  See:

http://au1.samba.org/samba/docs/man/Samba-Guide/happy.html#id2554156

Look at the section titled "Debugging Ldap"

Regards Geoff Scott

Hello!

The slapdlogs and slapd is running now. Telnet localhost 389 is also 
running. Thanks vey much.
Now, my next problems are with ldapadd:

amd:/etc/samba # /usr/bin/ldapadd -h 127.0.0.1 -D 
"cn=admin,dc=samba,dc=junits" -x -W -f /etc/openldap/example.ldif
Enter LDAP Password:
ldap_bind: Invalid credentials (49)

I took the rootpw secret. I did an account for admin, too with: smbpasswd -w 
<secret>. I created also an rootpw with slappasswd.

Have I also to create an admin account in passwd? After googlen, there must 
be a syntax error(ldap_bind: Invalid credentials (49))?


I created a simple example.ldif file:


dn: dc=samba,dc=junits
objectclass: dcObject
objectclass: organization
o: Example Company
dc: samba

dn: cn=admin,dc=samba,dc=junits
objectclass: organizationalRole
cn: admin

slapd.conf:

database        ldbm
suffix          "dc=samba,dc=junits"
rootdn          "cn=admin,dc=samba,dc=junits"
rootpw            secret
directory       /var/lib/ldap
cachesize       40000
dbcache         60000000
index           cn,sn,uid,displayName           pres,sub,eq
index           uidNumber,gidNumber             eq
index           sambaSID                        eq
index           sambaPrimaryGroupSID            eq
index           sambaDomainName                 eq
index           objectClass                     pres,eq
index           default                         sub
access to dn.subtree="dc=samba,dc=junits" attrs=cn
                 by * =cs break

Many thanks and best regards

Andreas






> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/listinfo/samba
>