[Fedora-directory-users] Tuning nsslapd-dbcachesize on Solaris
by George Holbert
When tuning FDS on a Solaris machine, I've heard two different
suggestions about nsslapd-dbcachesize:
1. Decrease nsslapd-dbcachesize, and instead rely on Solaris' built-in
filesystem cache which performs better.
2. Tune nsslapd-dbcachesize up to a value that is at least as large as
the size of your backend LDBM database.
To know for sure which works best in my case, I'll need to test both of
course. But, does anyone have any thoughts or prior experience on which
of the above options performs better?
Thanks a lot,
-- George
18 years, 7 months
[Fedora-directory-users] Request for LDAP Tools and Utilities Section
by Aly Dharshi
Hello All,
I hope that you are well. Is it possible for a sub-section created in the
documents page on directory.fedora.redhat.com to read LDAP Related Tools,
Utilities and 3 Party Software, which could list some useful links to software
of use to FDS users ? What do you think FDS RedHat Site admins ?
Cheers,
Aly.
--
Aly S.P Dharshi
aly.dharshi(a)telus.net
"A good speech is like a good dress
that's short enough to be interesting
and long enough to cover the subject"
18 years, 7 months
[Fedora-directory-users] Compiler error with Solaris8/gcc
by Dominic Ijichi
Hi,
I had to do a few little bodges here and there to get the mozilla stuff compiled
with gcc, then change xO2 to O2 in fds code. now I'm getting a compile error as
shown below, i believe its something to do with largefiles and gcc. am I
including the wrong files somewhere?
../../../built/SOLARIS-domestic-optimize-normal-slapd/servers/obj/log.o: In
function `log__enough_freespace':
log.c:(.text+0x4498): undefined reference to `__muldi3'
../../../built/SOLARIS-domestic-optimize-normal-slapd/servers/obj/time.o: In
function `read_genTime':
time.c:(.text+0x640): undefined reference to `__divdi3'
gmake[4]: ***
[../../../built/release/slapd/SOLARIS-domestic-optimize-normal-slapd/bin/slapd/server/libslapd.so]
Error 1
gmake[4]: Leaving directory
`/opt/project.venus/buildtree/base/FDS/fedora-ds-7.1/ldap/servers/slapd'
gmake[3]: *** [libslapd] Error 2
gmake[3]: Leaving directory
`/opt/project.venus/buildtree/base/FDS/fedora-ds-7.1/ldap/servers/slapd'
gmake[2]: *** [_slapd] Error 2
gmake[2]: Leaving directory
`/opt/project.venus/buildtree/base/FDS/fedora-ds-7.1/ldap/servers'
gmake[1]: *** [ldapprogs] Error 2
gmake[1]: Leaving directory
`/opt/project.venus/buildtree/base/FDS/fedora-ds-7.1/ldap'
make: *** [buildDirectory] Error 2
18 years, 7 months
[Fedora-directory-users] AD synchronization questions
by Ivan Ruskov
Hi,
I have a couple of windows users and I would like them to be available in
Linux. The FDS has a great feature which is the Active Directory
synchronization. I read attentively the documentation and searched the
source code but I did not find answers to my questions so I post them here.
For a user to be available in Linux she has to have a valid uid number. How
is the field uidNumber populated during inbound synchronization? (same for
the user's home directory)
When the windows users are organized in a tree of OUs do I have to create
the containers in FDS manually or are they created automatically by the
synchronization plug-in? (the FDS documentation mentions something about
this but it wasn't very clear to me)
Thanks.
18 years, 7 months
[Fedora-directory-users] Sync not updating FDS
by Dimitri Yioulos
Hello all.
After a bit of struggle, I got FDS to sync against my win2k3 ADS. However,
now when I add users to ADS, then do a manual sync (have I missed a setting
that makes this happen on a regular or scheduled basis?), those new users
don't appear in FDS. How can I get this to work?
Thanks.
Dimitri
18 years, 7 months
[Fedora-directory-users] AD synchronization questions
by Ivan Ruskov
Hi,
I have a couple of windows users and I would like them to be available in
Linux. The FDS has a great feature which is the Active Directory
synchronization. I read attentively the documentation and searched the
source code but I did not find answers to my questions so I post them here.
For a user to be available in Linux she has to have a valid uid number. How
is the field uidNumber populated during inbound synchronization? (same for
the user's home directory)
When the windows users are organized in a tree of OUs do I have to create
the containers in FDS manually or are they created automatically by the
synchronization plug-in? (the FDS documentation mentions something about
this but it wasn't very clear to me)
Thanks.
18 years, 7 months
[Fedora-directory-users] Radius and Fedora Directory Server
by Mturi Elias
Hi all,
I am working on the deployment of the Directory Server for the University,
and I am using Fedora Directory.
Also I want to use the Fedora Directory Server for authentcation with
Radius Server.
Is that possiple and how can it be done.
regards,
Mturi.
18 years, 7 months
[Fedora-directory-users] syncing a group's uniquemember attributes
by Robert Brophy
While syncing from Fedora-DS to Active Directory, it
looks like the only way to sync the uniquemember
attribute of a group is to have the members in the
same OU as the group.
Is that correct?
>From the Sync Manual page 17/21
Group entries that are within the scope of the sync
agreement will be synchronized in much the same way as
user entries. In addition, the membership of groups is
synchronized with the constraint that only those
members that are also within the scope of the
agreement are propagated. The result is that a group
may contain members that are both within and without
the scope of the agreement, but only the subset of
members that are themselves within agreement scope are
synchronized. The remaining members are left unchanged
on both sides.
Thank you,
Robert
______________________________________________________
Click here to donate to the Hurricane Katrina relief effort.
http://store.yahoo.com/redcross-donate3/
18 years, 7 months
[Fedora-directory-users] Useful script to extract LDAP based user posixGroup memberships information
by Tay, Gary
Assuming you are using posixGroup objectclass and memberUid attribute to
store your membership information, you may find my shell script useful
and handy.
It works on Solaris LDAP Client with "ldapaddent" and "ldaplist"
commands, and works against FDS, SUN DS or OpenLDAP.
#! /bin/sh
#
# get_ldap_memberUids.sh
#
# Gary Tay, 08-Sep-2005, written
#
if [ $# -le 0 ]
then
echo ""
echo "Usage:"
echo "$0 [SHOW_UID_ONLY||SHOW_DN|SHOW_UIDNUMBER|SHOW__NAME"
echo ""
echo "Purpose: get a list of memberships for LDAP posixGroups"
echo "Examples: "
echo "1) $0 SHOW_UID_ONLY"
echo "2) $0 SHOW_DN"
echo "3) $0 SHOW_UIDNUMBER"
echo "4) $0 SHOW_NAME"
echo ""
exit
fi
OPTION=$1
ldapaddent -d group | cut -d: -f1,3 >groups.txt
for i in `cat groups.txt | cut -d: -f2 | sort -n`
do
GIDN=$i; GNAME=`grep $GIDN groups.txt | cut -d: -f1`
echo memberUids for Group $GNAME, gidNumber=$GIDN
ldapaddent -d passwd | sort -n -t: +3 -4 | cut -d: -f1,3,4 >users.txt
cat users.txt | grep $GIDN | cut -d: -f1 >uids.txt
case "$OPTION" in
"SHOW_UID_ONLY") cat uids.txt;;
"SHOW_DN") for j in `cat uids.txt`
do
ldaplist passwd $j
done;;
"SHOW_UIDNUMBER") for j in `cat uids.txt`
do
UIDN=`ldaplist -l passwd $j | grep -i 'uidNumber:' | cut -d:
-f2`
echo $j,$UIDN
done;;
"SHOW_NAME") for j in `cat uids.txt`
do
NAME=`ldaplist -l passwd $j | grep -i 'cn:' | cut -d: -f2`
echo $j,$NAME
done;;
*) echo "$1 is an invalid option."; exit 1
esac
echo ""
done
Hope this helps.
Gary
18 years, 7 months
[Fedora-directory-users] Minimum ant version for building console code?
by Kevin M. Myer
My desktop machine is running Fedora Core 3. I checked out the CVS code for
building the consoles and followed the instructions in the Wiki to try and
build it. However, I'm getting an error (and am entirely new to using ant).
Is there a minimum ant version required to build?
[myer@pegmatite console]$ ant
Buildfile: build.xml
BUILD FAILED
file:/home/myer/fedora-ds/console/build.xml:51: The <fail> task doesn't support
the nested "condition" element.
Total time: 0 seconds
[myer@pegmatite console]$ rpm -q ant
ant-1.5.2-26
Kevin
--
Kevin M. Myer
Senior Systems Administrator
Lancaster-Lebanon Intermediate Unit 13 http://www.iu13.org
18 years, 7 months
