search for: ldapv3

...le thing if one is going to install everything on one single computer. I've a fully functioning empty ldav3 Slackware server with openldap-2.1.25, Berkeley DB-4.2 ,mit krb5, cyrus-sasl, openssl. Everything seams to work fine. Now I would like to add Samba-3 on separate Slackware computer to the ldapv3 server. I've installed Linux-PAM and openssl. Now to my questions: Do I need any other packages? When I use ./configure --with-ads --with-ldap --with-krb5 it complains about missing packages. Do I need them or is it possible for PAM and smb.conf to handle all comunication between the servers? I...

I think I have already seen this discussed. If so, where is a good "searchable" samba archive? Does samba 3 work with LDAPv3? I dumped my ldap database to ldif, and tried to add it to my test server running openldap 2.1.22-8 and got all kinds of violation errors. i.e. no structual objectclass provided, this was for my computer accounts, that have top, posixAccount, sambaSAMAccount objectClasses. Any Ideas, or can yo...

...cation, per the documentation here: http://www.centos.org/docs/5/html/Deployment_Guide-en-US/s1-ldap-pam.html when I try to query the directory for user information though, I get no results using the ldapsearch command [root at ldapclient ~]# ldapsearch -x uid=crichards # extended LDIF # # LDAPv3 # base <> with scope subtree # filter: uid=crichards # requesting: ALL # # search result search: 2 result: 0 Success # numResponses: 1 I'm not quite sure what I'm missing, as I can manually query the directory for, say, a uid, with the "ldapsearch" command with optio...

...search -H ldap://id.modelnine.org -b "dc=id,dc=modelnine,dc=org" -W -D "cn=Machine Account,cn=Users,dc=id,dc=modelnine,dc=org" "(|(distinguishedName=cn=Users,cn=Builtin,dc=id,dc=modelnine,dc=org)(distinguishedName=cn=Guests,cn=Builtin,dc=id,dc=modelnine,dc=org))" ... # LDAPv3 # base <dc=id,dc=modelnine,dc=org> with scope subtree # filter: (|(distinguishedName=cn=Users,cn=Builtin,dc=id,dc=modelnine,dc=org)(distinguishedName=cn=Guests,cn=Builtin,dc=id,dc=modelnine,dc=org)) # requesting: ALL # # Guests, Builtin, id.modelnine.org dn: CN=Guests,CN=Builtin,DC=id,DC=mod...

...t at dovecot.org>> wrote: >> >> I am new to dovecot administration. I?ve read the Wiki but that hasn?t given me the understanding I need. >> >> When I query my LDAP (on macOS) on a value for user ?gerben?, I can get that: >> >> dumbledore:~ gerben$ dscl /LDAPv3/127.0.0.1 -read /users/gerben GeneratedUID >> GeneratedUID: 780D870E-6B00-478E-AB70-3D3307215A82 >> >> I would like to use that value in dovecot settings, e.g. something like >> >> user_attrs = \ >> =mail=maildir://Library/Server/Mail/Data/mail/%{ldap:Generat...

I am updateding my LDAP presentation (ftp://kalamazoolinux.org/pub/pdf/ldapv3.pdf) to include a section on the Samba 2.2.x LDAP backend. But I can't find any definititive documentation on the "time" attributes: pwdLastChange, pwdMustChange. Either how the time is encoded or exactly what they mean. I've seen post saying they are hexidecimal (although the...

Hi, I?m new to LDAP and pam. Do I need to the user in /etc/passwd and /etc/shadow to autenticate a user in the sistem or in the PDC? I?m using RedHat 7.1 (kernel 2.4.19acl), LDAPv3 (NDS for Linux), Samba-2.2.6pre Thank?s Bruno Pereti. -------------- next part -------------- HTML attachment scrubbed and removed

...ry server. When using an OpenLDAP server, it is possible to use the StartTLS LDAP extended operation in the place of LDAPS. In either case, you are strongly encouraged to use secure communications protocols (so do not set ldap ssl = off). Note that the LDAPS protocol is deprecated in favor of the LDAPv3 StartTLS extended operation. However, the OpenLDAP library still provides support for the older method of securing communication between clients and servers." What is the difference between LDAPs and ldapv3 start-tls ? I select the ldaps protocol in my smb.conf because I don't kown how s...

I am new to dovecot administration. I?ve read the Wiki but that hasn?t given me the understanding I need. When I query my LDAP (on macOS) on a value for user ?gerben?, I can get that: dumbledore:~ gerben$ dscl /LDAPv3/127.0.0.1 -read /users/gerben GeneratedUID GeneratedUID: 780D870E-6B00-478E-AB70-3D3307215A82 I would like to use that value in dovecot settings, e.g. something like user_attrs = \ =mail=maildir://Library/Server/Mail/Data/mail/%{ldap:GeneratedUID} Is this possible and if so what do I exactly n...

Leopard Server 10.5.4, Samba Version 3.0.25b-apple I am attempting to do something similar to that described in the Samba HOWTO and Reference Guide on page 157 Section 11.4.3. I have configured an "Admins" group on the server and would like to tell the local workstation to treat users in that group as Administrators. This used to work. "net groupmap list" shows that

...org -b >"dc=id,dc=modelnine,dc=org" -W -D "cn=Machine >Account,cn=Users,dc=id,dc=modelnine,dc=org" >"(|(distinguishedName=cn=Users,cn=Builtin,dc=id,dc=modelnine,dc >=org)(distinguishedName=cn=Guests,cn=Builtin,dc=id,dc=modelnine >,dc=org))" >... ># LDAPv3 ># base <dc=id,dc=modelnine,dc=org> with scope subtree ># filter: >(|(distinguishedName=cn=Users,cn=Builtin,dc=id,dc=modelnine,dc= >org)(distinguishedName=cn=Guests,cn=Builtin,dc=id,dc=modelnine,dc=org)) ># requesting: ALL ># > ># Guests, Builtin, id.modelnine.org >...

...rning: Your password will expire in 35 days on Wed Aug 6 22:20:25 2014 [root at dc1 var]# ldapsearch -h dc1 -Y GSSAPI -b ou=SUDOers,dc=teemu,dc=local SASL/GSSAPI authentication started SASL username: administrator at TEEMU.LOCAL SASL SSF: 56 SASL data security layer installed. # extended LDIF # # LDAPv3 # base <ou=SUDOers,dc=teemu,dc=local> with scope subtree # filter: (objectclass=*) # requesting: ALL # # reima, SUDOers, teemu.local dn: CN=reima,OU=SUDOers,DC=teemu,DC=local objectClass: top objectClass: sudoRole cn: reima instanceType: 4 whenCreated: 20140625194650.0Z whenChanged: 20140625...

...rning: Your password will expire in 35 days on Wed Aug 6 22:20:25 2014 [root at dc1 var]# ldapsearch -h dc1 -Y GSSAPI -b ou=SUDOers,dc=teemu,dc=local SASL/GSSAPI authentication started SASL username: administrator at TEEMU.LOCAL SASL SSF: 56 SASL data security layer installed. # extended LDIF # # LDAPv3 # base <ou=SUDOers,dc=teemu,dc=local> with scope subtree # filter: (objectclass=*) # requesting: ALL # # reima, SUDOers, teemu.local dn: CN=reima,OU=SUDOers,DC=teemu,DC=local objectClass: top objectClass: sudoRole cn: reima instanceType: 4 whenCreated: 20140625194650.0Z whenChanged: 20140625...

...4.11.4 (query is for OU=Business but response is from OU=Test): $ldapsearch -D username at internal.xxx.yy -w password -H ldaps://192.168.1.1 -s one -b ou=business,dc=internal,dc=xxx,dc=yy "(&(objectCategory=person)(objectClass=user)(sAMAccountName=testadmin))" # extended LDIF # # LDAPv3 # base <ou=business,dc=internal,dc=xxx,dc=yy> with scope oneLevel # filter: (&(objectCategory=person)(objectClass=user)(sAMAccountName=testadmin)) # requesting: ALL # # Test Admin, Test, internal.xxx.yy dn: CN=Test Admin,OU=Test,DC=internal,DC=xxx,DC=yy objectClass: top objectClass: per...

Hi, I've got ldapsearch mostly working: root at morannon:/usr/local/samba/private/tls# ldapsearch '(sAMAccountName=dumaresq)' SASL/GSSAPI authentication started SASL username: administrator at XXX SASL SSF: 56 SASL data security layer installed. # extended LDIF # # LDAPv3 # base <> (default) with scope subtree # filter: (sAMAccountName=dumaresq) # requesting: ALL # results in here... # search result search: 5 result: 0 Success # numResponses: 2 # numEntries: 1 I cannot get ldapsearch -Z or ldaps working: ldapsearch '(sAMAccountName=dumaresq)' -...

..."cn=Machine >>> Account,cn=Users,dc=id,dc=modelnine,dc=org" >>> "(|(distinguishedName=cn=Users,cn=Builtin,dc=id,dc=modelnine,dc >>> =org)(distinguishedName=cn=Guests,cn=Builtin,dc=id,dc=modelnine >>> ,dc=org))" >>> ... >>> # LDAPv3 >>> # base <dc=id,dc=modelnine,dc=org> with scope subtree >>> # filter: >>> (|(distinguishedName=cn=Users,cn=Builtin,dc=id,dc=modelnine,dc= >>> >org)(distinguishedName=cn=Guests,cn=Builtin,dc=id,dc=modelnine,dc=org)) >>> # requesting: ALL >&...

...sAttrTypeNative:objectClass: posixAccount organizationalPerson csuxPerson top sambaSamAccount person inetOrgPerson csuxMain eduPerson dsAttrTypeNative:sambaSID: S-1-5-21-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX dsAttrTypeNative:sn: Sixpack dsAttrTypeNative:csuxPersonGuID: G000242316 AppleMetaNodeLocation: /LDAPv3/ldap-99.soe.csux.edu AppleMetaRecordName: uid=dsixpack,ou=People,dc=crm,dc=csux,dc=edu NFSHomeDirectory: /Users/dsixpack Password: ******** PrimaryGroupID: 100002 RealName: David Sixpack RecordName: dsixpack RecordType: dsRecTypeStandard:Users UniqueID: 9239 UserShell: /bin/bash 2) Regarding the...

...wrote: >>> >>> I am new to dovecot administration. I?ve read the Wiki but that hasn?t given me the understanding I need. >>> >>> When I query my LDAP (on macOS) on a value for user ?gerben?, I can get that: >>> >>> dumbledore:~ gerben$ dscl /LDAPv3/127.0.0.1 -read /users/gerben GeneratedUID >>> GeneratedUID: 780D870E-6B00-478E-AB70-3D3307215A82 >>> >>> I would like to use that value in dovecot settings, e.g. something like >>> >>> user_attrs = \ >>> =mail=maildir://Library/Server/Mail/...

...Ad in the link below is the same but if you want access without auth, > Have you tried to query the GC ports. ( 3268 or 3269 ) No, but now yes and does not work: gaio at albus:~$ ldapsearch -x -H ldap://vdcsv1:3268/ -b DC=ad,DC=fvg,DC=lnf,DC=it "(uid=gaio)" # extended LDIF # # LDAPv3 # base <DC=ad,DC=fvg,DC=lnf,DC=it> with scope subtree # filter: (uid=gaio) # requesting: ALL # # search result search: 2 result: 1 Operations error text: 00002020: Operation unavailable without authentication # numResponses: 1 gaio at albus:~$ ldapsearch -x -H ldaps://vdcsv1:326...

...formation from this LDAP directory? $ ldapsearch -b dc=example,dc=com -h 192.168.1.23 -U jack -Y DIGEST-MD5 '(sAMAccountName=jack)' SASL/DIGEST-MD5 authentication started Please enter your password: SASL username: jack SASL SSF: 128 SASL data security layer installed. # extended LDIF # # LDAPv3 # base <dc=example,dc=com> with scope subtree # filter: (sAMAccountName=jack) # requesting: ALL # # Jack Bates, Users, example.com dn: CN=Jack Bates,OU=Users,DC=example,DC=com objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: Jack Bates sn: Bates gi...