Re: [Fedora-directory-users] trying to build
by Jo De Troy
Hi Rich,
solved that one myself.
I created an extra symlink from within directoryconsole to the built
directory above.
Now how would I go about getting the patch that solves the ldapserver
crash when doing an ldappasswd? Could I just fetch the 2 changed files
form cvs and rebuild it?
Thanks again,
Jo
17 years, 6 months
[Fedora-directory-users] usertools
by Gennaro Tortone
Hi,
I'm migrating our NIS authentication server to Fedora Directory Server;
my problem is that all "classic" commands (useradd, userdel, chage, ...)
don't work on users migrated on LDAP (FDS)...
Is there something to configure ? (PAM, ...)
I tried with pwdutils (http://www.thkukuk.de/pam/pwdutils/) but there are
some authentication problems and the project seems to be not so "active"
Any idea ?
Regards,
--
Gennaro Tortone
INFN Napoli
Italy
tel: +39 81 676169
"Computer Science is no more about computers
than astronomy is about telescopes."
- Edsger Dijkstra
17 years, 6 months
Re: [Fedora-directory-users] trying to build
by Jo De Troy
Hi Rich,
thanks that helped.
Now I'm stuck during the ldapserver build
# [root@tc191 ldapserver]# make BUILD_BOMB="" PUMPKIN_AGE=""
BUILD_DEBUG=optimize
after some time I get
../../built/RHEL4_x86_gcc3_OPT.OBJ/nsinstall -t -m 644
../../../directoryconsole /built/package/ds10.jar
../../built/release/RHEL4_x86_gcc3_OPT.OBJ/java/jars
../../built/RHEL4_x86_gcc3_OPT.OBJ/nsinstall: cannot access
../../../directoryco nsole/built/package/ds10.jar: No such file
or directory
gmake[1]: *** [releaseDirectory] Error 1
gmake[1]: Leaving directory `/home/ldap/ds102/ldapserver/ldap/cm'
make: *** [setupDirectory] Error 2
So what's missing? Which did I do wrong?
I will document all of this and upload it to the Wiki of course
Thanks again,
Jo
17 years, 6 months
Re: [Fedora-directory-users] trying to build
by Jo De Troy
Hi Rich,
yes I did build the console.
But it doesn't write anything in
/home/ldap/ds102/built/release/package/java where the build of
adminserver goes looking. In fact the java directory above does not
exist, the package directory does.
Thanks again,
Jo
[root@ldapsvr console]# ant -Dimports.file=imports.FC3
/usr/bin/build-classpath: error: could not find jaxp_parser_impl Java
extension for this JVM
/usr/bin/build-classpath: error: All specified jars were not found
Buildfile: build.xml
prepare_imports:
prepare_build:
import_ldapjdk:
import_jss_jar:
build:
prepare_jars:
build_jars:
[jar] Building jar:
/home/ldap/ds102/built/release/jars/fedora-mcc-1.0_en.jar
BUILD SUCCESSFUL
Total time: 3 seconds
17 years, 6 months
Re: [Fedora-directory-users] trying to build
by Jo De Troy
Hello,
I get an error when building the adminserver. I have completely
followed the wiki pages and installed all other components
cd console; gmake BUILD_OPT=1 NO_MOCHA=1 NO_JAVA=1
NSPR_BASENAME=libnspr4 USE_PTHREADS=1 SECURITY=domestic BUILD_MODE=ext
BUILD_MODULE=HTTP_ADMIN -w
gmake[4]: Entering directory `/home/ldap/ds102/adminserver/admserv/console'
The console jar files are missing from
../../../built/release/package/java - please build or download them
gmake[4]: *** [nmcjdk] Error 1
gmake[4]: Leaving directory `/home/ldap/ds102/adminserver/admserv/console'
gmake[3]: *** [do-console] Error 2
gmake[3]: Leaving directory `/home/ldap/ds102/adminserver/admserv'
gmake[2]: *** [httpAdmin] Error 2
gmake[2]: Leaving directory `/home/ldap/ds102/adminserver'
gmake[1]: *** [buildAdmin_r] Error 2
gmake[1]: Leaving directory `/home/ldap/ds102/adminserver'
make: *** [buildAdmin] Error 2
Anybody?
Thanks again,
Jo
17 years, 6 months
[Fedora-directory-users] How do I allow a certain admin user to administrate a directory?
by Stefan Högdahl
Hi.
I'm trying to to configure fds102 so that it will allow a certain user to administrate a directory, but I cannot get it to work. I can bind anonymously and do searches from anywhere, but I cannot bind with any of the names I've specified during setup so that I would be able to modify, create and delete reccords from the directory. If I want to administrate anything, I have to use the admin-console that ships with fds.
What should I do in order to grant full-administration privilegies for a certain user to the directory? I've tried to add users through the the "Set access permissions..." administration process, but when I try to search for a certain user from a specific directory no results are returned.
Feedback and tips will be greatly appreciated :)
With best regards,
/Stefan Hogdahl.
17 years, 6 months
Re: [Fedora-directory-users] trying to build
by Jo De Troy
Hello,
I'm trying to build FedoraDS 1.0.2 again on RHEL4 and following all
the docs on the wiki.
I successfully compiled all prereq's on the wiki.
I'm trying to compile the other modules from the directoryserver
(mod_admserv, mod_restartd, adminserver,directoryconsole)
On the page explaining how to build mod_admserv only the configure
part is written, don't I need to compile mod_admserv? The same
question for mod_nss and mod_restartd?
How exactly can I build without the dsml code?
make USE_DSMLGW=0 USE_JAVATOOLS=0 ?
Thanks again,
Jo
17 years, 6 months
[Fedora-directory-users] Re: password policy
by Jo De Troy
Hello,
indeed I can see the entries via de console, but I haven't been able
yet to get these back via an ldapsearch command
# ldapsearch -x -h localhost '(cn=config)'
returns nothing
Any ideas what I'm doing wrong?
Thanks again,
Jo
17 years, 6 months
[Fedora-directory-users] [samba3+fds1.0.2/fc5] Can't map ntgroup to unixgroup
by th3tm4n
I try to setup Samba 3 integrate with FDS 1.0.2 on FC5 follow this howto:
http://directory.fedora.redhat.com/wiki/Howto:Samba
Everything seemed go on the right way until I mapped ntgroup to unixgroup
1. Here's my case:
[root@dsat ~]# net groupmap list
[root@dsat ~]# net groupmap add rid=512 ntgroup="Domain Admins"
unixgroup=domainadmins
adding entry for group Domain Admins failed!
2. Here's samba log:
[root@dsat ~]# tail /var/log/smbd.log
[2006/10/10 08:51:23, 0] lib/smbldap.c:smbldap_connect_system(851)
ldap_connect_system: Failed to retrieve password from secrets.tdb
[2006/10/10 08:51:23, 1] lib/smbldap.c:another_ldap_try(1051)
Connection to LDAP server failed for the 15 try!
[2006/10/10 08:51:24, 0] passdb/secrets.c:fetch_ldap_pw(629)
fetch_ldap_pw: neither ldap secret retrieved!
[2006/10/10 08:51:24, 0] lib/smbldap.c:smbldap_connect_system(851)
ldap_connect_system: Failed to retrieve password from secrets.tdb
[2006/10/10 08:51:24, 0] passdb/pdb_ldap.c:ldapsam_search_one_group(2170)
ldapsam_search_one_group: Problem during the LDAP search: LDAP error:
(unknown) (Time limit exceeded)
Here's some setting in smb.conf
security = user
passdb backend = ldapsam:ldap://localhost
ldap admin dn = cn=admin
ldap suffix = dc=local,dc=atc
ldap user suffix = ou=People
ldap machine suffix = ou=Computers
ldap group suffix = ou=Groups
17 years, 6 months