I'm having trouble trying to setup Fedora DS for Samba4's 'make test'
environment. I'm using this as a reproducible development platform for
my LDAP backend testing with Fedora DS.
So far, I've been attempting to run
/opt/fedora-ds/setup/setup -s st/ldap/fedorads.inf
(where fedorads.inf is attached)
As non-root, it errors out all over the place with being unable to read
files. I'm a bit puzzled by this, because the basic distribution files
should be public knowledge, and it shouldn't be trying to touch any
other LDAP setup on the disk.
grep: /opt/fedora-ds/admin-serv/config/adm.conf: Permission denied
touch: cannot touch `dssecure.txt': Permission denied
touch: cannot touch `assecure.txt': Permission denied
grep: /opt/fedora-ds/slapd-localhost/config/dse.ldif: Permission
denied
grep: /opt/fedora-ds/slapd-localhost/config/dse.ldif: Permission
denied
grep: /opt/fedora-ds/admin-serv/config/adm.conf: Permission denied
grep: /opt/fedora-ds/admin-serv/config/adm.conf: Permission denied
Converting slapd-localhost to new format password file . . .
Copying new schema ldiffiles . . .
Can't create /opt/fedora-ds/slapd-localhost/config/schema-bak/old:
Permission denied
Starting slapd-localhost . . .
When run as root, it wants the password to the configuration directory.
How do I convince it that it will become the configuration directory,
for it's mini-instance?
sudo /opt/fedora-ds/setup/setup -s st/ldap/fedorads.inf
INFO Begin Setup . . .
In order to reconfigure your installation, the Configuration Directory
Administrator password is required. Here is your current information:
Configuration Directory:
ldap://localhost.localdomain:3389/o=NetscapeRoot
Configuration Administrator ID: admin
At the prompt, please enter the password for the Configuration
Administrator.
administrator ID: admin
Password:
Password:
I find it odd that we ever require passwords to convince the DS that we,
as a local root user, are a local root user. This should be handled
behind the covers (perhaps with the ldapi:// support I've asked for).
Anyway, can I have some hints as to how to setup a unprivileged, test
LDAP server from the binaries in the fedora-ds-1.0.4 RPM?
Are some of the files needlessly read protected, or am I just doing
something wrong?
Andrew Bartlett
--
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team
http://samba.org
Samba Developer, Red Hat Inc.
http://redhat.com