Hey folks,
I'm making my first foray into DS on Centos 5.4. I got thinks
installed a couple of weeks ago but now want to start from scratch
again. It is a sandbox system running in a VM, so I can fairly easily
just reload Centos in there.However, it would be even quicker if I
could just
I've got a sandbox set up and finally have the centos-ds server
installed and I seem to be able to add users at least. I've been
looking at these docs :
http://www.redhat.com/docs/manuals/dir-server/
The install guide got me that far. Then my next logical step was
OK, how do I use this now to
Definitely interested in hearing more about your progress
I'm just making baby steps here but want to be able to get to where
you are now :-)
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In Defense of Food
--
389 users mailing list
On Wed, Dec 2, 2009 at 10:40 AM, Prashanth Sundaram psunda...@wgen.net wrote:
It will take time to learn LDAP as it is a huge topic. Here's a book I would
recommend: LDAP System Administration by Gerald Carter(O'Reilly Publication)
Yeah, no kidding - holy moly! I just ordered that book about
Add another
system-config-authentication --enablemkhomedir --update
As the name suggests, do this on the client and homedirs will be made
for you automatically when they first log in.
w00t!!!
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In
OK, I've got auth figured out for Linux login.
This is a good thing. A very good thing!
Now, if a user does passwd on the Linux box, I see that it updates
their LDAP password.
Another very good thing!
But I'm going to have non-Linux users too. I'm not adventurous enough
at this point to set
On Wed, Dec 2, 2009 at 10:21 PM, Chandrasekar Kannan ckan...@redhat.com wrote:
I would think the Directory Server Gateway/Phonebook webapp
should allow you to do that...
http://directory.fedoraproject.org/wiki/DSGW
Excellent - just what I was hoping for!
--
“Don't eat anything you've ever
Hmmm, it seems that Centos-DS does not have this :
http://directory.fedoraproject.org/wiki/WebApps_Install
# Install the Directory Server Gateway package.
yum install fedora-ds-dsgw
# Run the setup-ds-dsgw script to set up the default instances of the
Directory Server Gateway, Directory
, Dec 3, 2009 at 11:30 AM, Alan McKay alan.mc...@gmail.com wrote:
Hmmm, it seems that Centos-DS does not have this :
http://directory.fedoraproject.org/wiki/WebApps_Install
# Install the Directory Server Gateway package.
yum install fedora-ds-dsgw
# Run the setup-ds-dsgw script to set up
I doubt there will ever be one, since there is no redhat-ds-dsgw either.
Centos adds other extras in that do not come from Red Hat - so you never know
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In Defense of Food
--
389 users mailing list
OK, looks like FC6 was the last release to have the RPMs here :
http://directory.fedoraproject.org/yum/dirsrv/fedora/
IIRC, Centos5.x is based on FC7 is that right?
Where would I get RPMs?
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In
OK, I got this RPM
http://directory.fedoraproject.org/yum/dirsrv/fedora/6/x86_64/RPMS/389-dsgw-1.1.4-1.el5.x86_64.rpm
and it installed fine. I ran the config
/usr/sbin/setup-ds-dsgw
and it said it went OK.
So I got to the web GUI now and see something different which looks
like that wiki page.
... I'm going to ask anyway.
I've got an internal wiki page in my company right now with details on
how I've set up our new Centos-DS server. There is nothing like this
currently on your wiki - short and sweet explanation that will
probably work for 90%+ of small organisations like mine.
I'd
Sure. Just email me the doc and I'll figure out some place to put it.
OK. I'm still working on it - figuring out replication right now
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In Defense of Food
--
389 users mailing list
(remove
the trailing space)
duh! Ok, I'm an idiot!
Sorry, but I get really illogically frightened by anything to do with LDAP
sigh
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In Defense of Food
--
389 users mailing list
OK, sorry again to cry wolf, but I think this is a real question this time :-)
Back to the Red Hat doc it says :
Specify the replication settings for the multi-mastered read-write replica.
1.
In the Directory Server Console, select the Configuration tab.
2.
In the navigation
Well, I blew something.
http://www.redhat.com/docs/manuals/dir-server/8.1/admin/images/replagmt1.png
When I got to this point I did not see at the bottom the subtree
dc=example,dc=com I saw NetscapeRoot
Which means when I asked the other question about whether to choose
NetscapeRoot or
http://directory.fedoraproject.org/wiki/Howto:WalkthroughMultimasterSSL
Thanks, that is what I will do tomorrow
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In Defense of Food
--
389 users mailing list
389-us...@redhat.com
On Thu, Dec 3, 2009 at 6:14 PM, Nathan Kinder nkin...@redhat.com wrote:
You need to choose userRoot. The default database name is userRoot, which
maps to whatever suffix you defined at install time. The NetscapeRoot
backend
is used by the Administration Server for things like letting the
Take a look at http://directory.fedoraproject.org/wiki/Howto:Netgroups and
http://directory.fedoraproject.org/wiki/Howto:Posix
Oooo, this is looking good!
thanks!
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In Defense of Food
--
389 users
Dang - I went back and did it with userRoot and got the same Error 6.
So I'll go off now and look at that doc on the fedora wiki that was
mentioned above. Not sure where I went wrong ...
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In
[r...@sandbox1 ~]# ldapmodify -D cn=Directory Manager -w MY_REAL_PASSWORD
-x !!!
Fixed so far ...
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of In Defense of Food
--
389 users mailing list
389-us...@redhat.com
So - failed with error 3 this time but I'm not losing hope. By that
point I think both servers were a little bastardized from trying this
method and that.
I'm just going to blow them both away and start from scratch. Doing
the initial install is pretty easy now that I have it documented.
Will
Hey folks,
I keep seeing reference to 4 servers in all the docs. Is that a
magic # of some sort? i.e. Do I need to have 4? Or can I have 2 or
3?
What I want to do is this :
- get main server set up here in the office
- get backup set up in office
- get another set up at remote site, on other
When you say failed with error 3 you should be more specific - what
failed? What is the context? Is there any additional information in the
error message?
Yeah, sorry, I wasn't more specific because I wasn't really asking for
help - just giving an update :-) As mentioned, I'm going to blow
Right. You have to add this DN to the list of supplier DNs in the replica
entry on the consumer - this says which DNs are allowed to be a supplier for
this replica. You also have to specify this DN in your supplier replication
agreement.
I did that according to the fedora wiki doc
Hey folks,
Now that I want to install this in production, I have to ask about dsktune :-)
Some of what it is telling me just seems plain incorrect. Let's have a look
WARNING: There are only 1024 file descriptors (hard limit) available, which
limit the number of simultaneous connections.
On Mon, Dec 7, 2009 at 10:15 AM, Rich Megginson rmegg...@redhat.com wrote:
What does
ulimit -n
say?
Aha!
[r...@fileserver ~]# ulimit -n
1024
It's probably not an issue if you have 20 users. It might be an issue if
you have several thousand users.
OK, thanks.
--
“Don't eat anything
Aha!
[r...@fileserver ~]# ulimit -n
1024
So there is still no real description on why this matters. It is just
mentioned in passing here :
http://www.redhat.com/docs/manuals/dir-server/8.1/install/Installation_Guide-RHEL-Requirements.html#Installation_Guide-Platform_Support-File_Tuning
with
Ug, I could have sworn I looked at this and it was OK, but now I see
it is not :-( I could have sworn I tested this but I must have
goofed something in my test. Maybe forgot to remove the local
/etc/passwd entry or something.
Username - I'd like to have a Posix username like amckay, but a wiki
Which wiki? Twiki can map your normal login name to a WikiName internally
so apache only has to authenticate the login name and set REMOTE_USER.
We use Twiki and Trac (which includes a wiki among other things)
Good to know! I'll have to look into Trac authentication to see if
it can do the
On Tue, Dec 8, 2009 at 4:50 PM, Andrey Ivanov
andrey.iva...@polytechnique.fr wrote:
Your wiki may be able to map other LDAP attributes to wikiname (for
example, you may have uid=amckay and cn=AlanMcKay)...
Well, a preliminary google brings up a fair bit about Trac and LDAP,
so I'm not too
Hey folks, has anyone integrated with Clarkconnect?
Looks like our firewall is running its own LDAP server - I'd much
rather point it at Centos-DS
Google does not seem to bring up much
thanks,
-Alan
--
“Don't eat anything you've ever seen advertised on TV”
- Michael Pollan, author of
33 matches
Mail list logo