RE: [gentoo-user] Cannot start Slapd (OpenLDAP)
$ street $ o $ ou $ title $ businessCategory $ postalCode $ postOfficeBox $ physicalDeliveryOfficeName $ destinationIndicator $ givenName $ initials $ generationQualifier $ dnQualifier $ houseIdentifier $ dmdName $ pseudonym $ textEncodedORAddress $ info $ drink $ roomNumber $ userClass $ host $ documentIdentifier $ documentTitle $ documentVersion $ documentLocation $ personalTitle $ co $ uniqueIdentifier $ organizationalStatus $ buildingName $ documentPublisher $ carLicense $ departmentNumber $ displayName $ employeeNumber $ employeeType $ preferredLanguage $ ipServiceProtocol $ nisMapName ) ) 2.5.13.4 (caseIgnoreSubstringsMatch): matchingRuleUse: ( 2.5.13.4 NAME 'caseIgnoreSubstringsMatch' APPLIES ( serialNumber $ destinationIndicator $ dnQualifier ) ) 2.5.13.3 (caseIgnoreOrderingMatch): matchingRuleUse: ( 2.5.13.3 NAME 'caseIgnoreOrderingMatch' APPLIES ( serialNumber $ destinationIndicator $ dnQualifier ) ) 2.5.13.2 (caseIgnoreMatch): matchingRuleUse: ( 2.5.13.2 NAME 'caseIgnoreMatch' APPLIES ( supportedSASLMechanisms $ vendorName $ vendorVersion $ ref $ name $ cn $ uid $ labeledURI $ description $ olcConfigFile $ olcConfigDir $ olcAccess $ olcAllows $ olcArgsFile $ olcAttributeOptions $ olcAttributeTypes $ olcAuthIDRewrite $ olcAuthzPolicy $ olcAuthzRegexp $ olcBackend $ olcDatabase $ olcDisallows $ olcDitContentRules $ olcInclude $ olcLdapSyntaxes $ olcLimits $ olcLogFile $ olcLogLevel $ olcModuleLoad $ olcModulePath $ olcObjectClasses $ olcObjectIdentifier $ olcOverlay $ olcPasswordCryptSaltFormat $ olcPasswordHash $ olcPidFile $ olcPlugin $ olcPluginLogFile $ olcReferral $ olcReplica $ olcReplicaArgsFile $ olcReplicaPidFile $ olcReplogFile $ olcRequires $ olcRestrict $ olcRootDSE $ olcRootPW $ olcSaslAuxprops $ olcSaslHost $ olcSaslRealm $ olcSaslSecProps $ olcSecurity $ olcServerID $ olcSizeLimit $ olcSortVals $ olcSubordinate $ olcSyncrepl $ olcTCPBuffer $ olcTimeLimit $ olcTLSCACertificateFile $ olcTLSCACertificatePath $ olcTLSCertificateFile $ olcTLSCertificateKeyFile $ olcTLSCipherSuite $ olcTLSCRLCheck $ olcTLSCRLFile $ olcTLSRandFile $ olcTLSVerifyClient $ olcTLSDHParamFile $ olcTLSProtocolMin $ olcUpdateRef $ olcDbDirectory $ olcDbCheckpoint $ olcDbCryptFile $ olcDbPageSize $ olcDbIndex $ olcDbLockDetect $ olcDbMode $ olcSpCheckpoint $ olcChainingBehavior $ olcDbURI $ olcDbStartTLS $ olcDbACLPasswd $ olcDbACLBind $ olcDbIDAssertPasswd $ olcDbIDAssertBind $ olcDbIDAssertMode $ olcDbIDAssertAuthzFrom $ olcDbTFSupport $ olcDbTimeout $ olcDbIdleTimeout $ olcDbConnTtl $ olcDbNetworkTimeout $ olcDbCancel $ olcDbQuarantine $ knowledgeInformation $ sn $ serialNumber $ c $ l $ st $ street $ o $ ou $ title $ businessCategory $ postalCode $ postOfficeBox $ physicalDeliveryOfficeName $ destinationIndicator $ givenName $ initials $ generationQualifier $ dnQualifier $ houseIdentifier $ dmdName $ pseudonym $ textEncodedORAddress $ info $ drink $ roomNumber $ userClass $ host $ documentIdentifier $ documentTitle $ documentVersion $ documentLocation $ personalTitle $ co $ uniqueIdentifier $ organizationalStatus $ buildingName $ documentPublisher $ carLicense $ departmentNumber $ displayName $ employeeNumber $ employeeType $ preferredLanguage $ ipServiceProtocol $ nisMapName ) ) 1.2.36.79672281.1.13.3 (rdnMatch): 2.5.13.1 (distinguishedNameMatch): matchingRuleUse: ( 2.5.13.1 NAME 'distinguishedNameMatch' APPLIES ( creatorsName $ modifiersName $ subschemaSubentry $ entryDN $ namingContexts $ aliasedObjectName $ dynamicSubtrees $ distinguishedName $ seeAlso $ olcDefaultSearchBase $ olcRootDN $ olcSchemaDN $ olcSuffix $ olcUpdateDN $ olcDbACLAuthcDn $ olcDbIDAssertAuthcDn $ member $ owner $ roleOccupant $ manager $ documentAuthor $ secretary $ associatedName $ dITRedirect ) ) 2.5.13.0 (objectIdentifierMatch): matchingRuleUse: ( 2.5.13.0 NAME 'objectIdentifierMatch' APPLIES ( supportedControl $ supportedExtension $ supportedFeatures $ supportedApplicationContext ) ) slaptest startup: initiated. backend_startup_one: starting cn=config config_back_db_open config_build_entry: cn=config config_build_entry: cn=module{0} config_build_entry: cn=schema config_build_entry: cn={0}core config_build_entry: cn={1}cosine config_build_entry: cn={2}inetorgperson config_build_entry: cn={3}nis config_build_entry: olcDatabase={-1}frontend config_build_entry: olcDatabase={0}config config_build_entry: olcDatabase={1}hdb backend_startup_one: starting dc=wesleyseminary,dc=edu hdb_db_open: database dc=wesleyseminary,dc=edu: dbenv_open(/var/lib/openldap-data). config file testing succeeded slaptest shutdown: initiated bdb_cache_release_all slaptest destroy: freeing system resources. ---End Output--- Regards, Christopher Kurtis Koeber (W): (202) 885-8654 (C): (301) 467-8417 http://www.chriskoeber.com -Original Message- From: Christopher Koeber [mailto:ckoe...@gmail.com] Sent: Monday, May 24, 2010 11:49 AM To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Cannot start Slapd (OpenLDAP
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On Wed, May 26, 2010 at 19:52, Christopher Kurtis Koeber ckoe...@gmail.com wrote: However, I STILL can't get the server to start. And now I don't know what may be the issue, as slaptest is coming back OK. Any ideas? Try running slapd -d 65535 and tell us what it says. Ward
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On Wed, May 26, 2010 at 20:36, Christopher Kurtis Koeber ckoe...@gmail.com wrote: Ran the command: /usr/lib/openldap/slapd -F /etc/openldap/ -d 65535 See attached as the output was long. Not sure what is going on. Any help would be appreciated. Are you sure you specified a rootdn and rootpw and that they are correct? I cann't tell what goes wrong, it starts correctly and that it goes wrong and terminates. Maybe you should post this on the openldap mailing list? Ward
RE: [gentoo-user] Cannot start Slapd (OpenLDAP)
Sure. I guess that is the best. Thank you so much for your time. Regards, Christopher Kurtis Koeber (W): (202) 885-8654 (C): (301) 467-8417 http://www.chriskoeber.com -Original Message- From: Ward Poelmans [mailto:wpoel...@gmail.com] Sent: Wednesday, May 26, 2010 2:54 PM To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Cannot start Slapd (OpenLDAP) On Wed, May 26, 2010 at 20:36, Christopher Kurtis Koeber ckoe...@gmail.com wrote: Ran the command: /usr/lib/openldap/slapd -F /etc/openldap/ -d 65535 See attached as the output was long. Not sure what is going on. Any help would be appreciated. Are you sure you specified a rootdn and rootpw and that they are correct? I cann't tell what goes wrong, it starts correctly and that it goes wrong and terminates. Maybe you should post this on the openldap mailing list? Ward
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On 5/22/10, Indexer inde...@internode.on.net wrote: On 23/05/2010, at 2:09 AM, Robin Atwood wrote: On Saturday 22 May 2010, Christopher Kurtis Koeber wrote: When I go to /var/log/messages nothing is logged there. Anything I can do to fix this? Oh wait, /var/log/ldaplog is my customisation of syslog-ng. But slapd messages should be written with facility local4. Trying it with the --debug option on the command line. The easiest way to find why your ldap server wont start is to run the command slapd -4 -d 256 which translates to run in ipv4 only with debug level of 256. If the server wont start the first few messages should highlight your error. William I tried to run this command but I get a command not found. The /etc/init.d/slapd resource script doesn't accept the arguments you mentioned. Do I changeoever to a different directory to run the command? Thanks. -- Regards, Christopher Koeber
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On 5/22/10, Ward Poelmans wpoel...@gmail.com wrote: On Sat, May 22, 2010 at 21:26, Christopher Kurtis Koeber ckoe...@gmail.com wrote: XX~ # slaptest hdb_db_open: warning - no DB_CONFIG file found in directory /var/lib/openldap-data: (2). Expect poor performance for suffix dc= ,dc=XXX. hdb_db_open: database dc= ,dc=XXX: db_open(/var/lib/openldap-data/id2entry.bdb) failed: No such file or directory (2). backend_startup_one (type=hdb, suffix=dc=,dc=XXX): bi_db_open failed! (2) slap_startup failed (test would succeed using the -u switch) So, I am guessing I need to initialize somehow? Is that right? Normally, if the directory /var/lib/openldap-data/ exists and is read-writeable for the user under which slapd is running, slapd creates the database for you. But you beter copy a DB_CONFIG to there for good perfomance. Ward I tried running the service as root with the same results below, so I don't think this is a permissions issue, especially since I am attempting to run this straight from a standard emerge with no customizations beyond what was given in the guide. Here is the latest: hdb_db_open: warning - no DB_CONFIG file found in directory /var/lib/openldap-data: (2). Expect poor performance for suffix dc=X,dc=XXX. hdb_db_open: database dc=X,dc=XXX: db_open(/var/lib/openldap-data/id2entry.bdb) failed: No such file or directory (2). backend_startup_one (type=hdb, suffix=dc=X,dc=XXX): bi_db_open failed! (2) slap_startup failed (test would succeed using the -u switch) -- Regards, Christopher Koeber
[gentoo-user] Cannot start Slapd (OpenLDAP)
Hello, I am trying to start OpenLDAP (I am following this guide http://www.gentoo.org/doc/en/ldap-howto.xml here) but the service fails to start. I get the double exclamations like this: Code: * Starting ldap-server ... [ !! ] When I go to /var/log/messages nothing is logged there. Anything I can do to fix this? Thanks in advances for your time. Regards, Christopher Koeber
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On Saturday 22 May 2010, Christopher Kurtis Koeber wrote: Hello, I am trying to start OpenLDAP (I am following this guide http://www.gentoo.org/doc/en/ldap-howto.xml here) but the service fails to start. I get the double exclamations like this: Code: * Starting ldap-server ... [ !! ] When I go to /var/log/messages nothing is logged there. Anything I can do to fix this? Take a look at /var/log/ldaplog! HTH -Robin -- -- Robin Atwood. Ship me somewheres east of Suez, where the best is like the worst, Where there ain't no Ten Commandments an' a man can raise a thirst from Mandalay by Rudyard Kipling --
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On Saturday 22 May 2010, Christopher Kurtis Koeber wrote: When I go to /var/log/messages nothing is logged there. Anything I can do to fix this? Oh wait, /var/log/ldaplog is my customisation of syslog-ng. But slapd messages should be written with facility local4. Trying it with the --debug option on the command line. -Robin -- -- Robin Atwood. Ship me somewheres east of Suez, where the best is like the worst, Where there ain't no Ten Commandments an' a man can raise a thirst from Mandalay by Rudyard Kipling --
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On Sat, May 22, 2010 at 19:23, Christopher Kurtis Koeber ckoe...@gmail.com wrote: OK, I did that, but the output is hard to parse through. Attached is text of this command: /etc/init.d/slapd --debug restart That puts the debug of the init scripts on, not of openldap. Try: slapd -d 65535 That should give you all the debugging output of slapd. Ward
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
or... you could run slaptest and get some failure output. I noticed that my slapd was having issues too, I managed to track it down to a bdb version mismatch miniroute ~ # slaptest bdb_back_initialize: BDB library version mismatch: expected Berkeley DB 4.8.26: (2010-03-14), got Berkeley DB 4.8.30: (2010-05-03) backend_init: initialized for type bdb slaptest: slap_init failed! miniroute ~ # On Sat, May 22, 2010 at 11:37 AM, Ward Poelmans wpoel...@gmail.com wrote: On Sat, May 22, 2010 at 19:23, Christopher Kurtis Koeber ckoe...@gmail.com wrote: OK, I did that, but the output is hard to parse through. Attached is text of this command: /etc/init.d/slapd --debug restart That puts the debug of the init scripts on, not of openldap. Try: slapd -d 65535 That should give you all the debugging output of slapd. Ward
RE: [gentoo-user] Cannot start Slapd (OpenLDAP)
Hey! Thanks! Much better than sifting in the dark :) Here is my output: XX~ # slaptest hdb_db_open: warning - no DB_CONFIG file found in directory /var/lib/openldap-data: (2). Expect poor performance for suffix dc= ,dc=XXX. hdb_db_open: database dc= ,dc=XXX: db_open(/var/lib/openldap-data/id2entry.bdb) failed: No such file or directory (2). backend_startup_one (type=hdb, suffix=dc=,dc=XXX): bi_db_open failed! (2) slap_startup failed (test would succeed using the -u switch) So, I am guessing I need to initialize somehow? Is that right? Thanks again. Regards, Christopher Kurtis Koeber (W): (202) 885-8654 (C): (301) 467-8417 http://www.chriskoeber.com/ http://www.chriskoeber.com From: Kaddeh [mailto:kad...@gmail.com] Sent: Saturday, May 22, 2010 3:13 PM To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Cannot start Slapd (OpenLDAP) or... you could run slaptest and get some failure output. I noticed that my slapd was having issues too, I managed to track it down to a bdb version mismatch miniroute ~ # slaptest bdb_back_initialize: BDB library version mismatch: expected Berkeley DB 4.8.26: (2010-03-14), got Berkeley DB 4.8.30: (2010-05-03) backend_init: initialized for type bdb slaptest: slap_init failed! miniroute ~ # On Sat, May 22, 2010 at 11:37 AM, Ward Poelmans wpoel...@gmail.com wrote: On Sat, May 22, 2010 at 19:23, Christopher Kurtis Koeber ckoe...@gmail.com wrote: OK, I did that, but the output is hard to parse through. Attached is text of this command: /etc/init.d/slapd --debug restart That puts the debug of the init scripts on, not of openldap. Try: slapd -d 65535 That should give you all the debugging output of slapd. Ward
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On Sat, May 22, 2010 at 21:26, Christopher Kurtis Koeber ckoe...@gmail.com wrote: XX~ # slaptest hdb_db_open: warning - no DB_CONFIG file found in directory /var/lib/openldap-data: (2). Expect poor performance for suffix dc= ,dc=XXX. hdb_db_open: database dc= ,dc=XXX: db_open(/var/lib/openldap-data/id2entry.bdb) failed: No such file or directory (2). backend_startup_one (type=hdb, suffix=dc=,dc=XXX): bi_db_open failed! (2) slap_startup failed (test would succeed using the -u switch) So, I am guessing I need to initialize somehow? Is that right? Normally, if the directory /var/lib/openldap-data/ exists and is read-writeable for the user under which slapd is running, slapd creates the database for you. But you beter copy a DB_CONFIG to there for good perfomance. Ward
Re: [gentoo-user] Cannot start Slapd (OpenLDAP)
On 23/05/2010, at 2:09 AM, Robin Atwood wrote: On Saturday 22 May 2010, Christopher Kurtis Koeber wrote: When I go to /var/log/messages nothing is logged there. Anything I can do to fix this? Oh wait, /var/log/ldaplog is my customisation of syslog-ng. But slapd messages should be written with facility local4. Trying it with the --debug option on the command line. The easiest way to find why your ldap server wont start is to run the command slapd -4 -d 256 which translates to run in ipv4 only with debug level of 256. If the server wont start the first few messages should highlight your error. William