needs to come as a Red Hat package.
Jon Roberts
www.mentata.com
; I do this regularly in my
apps.
Jon Roberts
www.mentata.com
again.
Jon Roberts
www.mentata.com
Jon Roberts wrote:
FC4
OpenLDAP 2.3.4
BDB 4.2.52 w/patches
This should be an easy issue, but I am getting stuck on configure. I
installed BDB from source myself in /usr/local paths, so I have:
ls -l /usr/local/lib
total 17888
-rw-r--r-- 1 user user 6984362
, I think there's something wrong with inequality search
operations in OpenLDAP 2.3.4. Sorry for the lengthy post. Any insights
or suggestions?
Jon Roberts
www.mentata.com
Pierangelo Masarati wrote:
Jon Roberts wrote:
In short, I think there's something wrong with inequality search
operations in OpenLDAP 2.3.4. Any insights or suggestions?
I see the issue; I couldn't track the exact reason, but there seems to
be a problem with GE filters, which result
anyone know whats up?
You didn't share your slapd.conf, but it may be you haven't configured
to index the uid attribute.
Nice to see somebody keeping track of voters ;)
Jon Roberts
www.mentata.com
, cleanly, and flexibly vs. a sloppy
repository for code that is all things to a few people.
Jon Roberts
www.mentata.com
... forthwith donning my flame-retardant assflaps
Howard Chu wrote:
Jon Roberts wrote:
Finally there's my most recent attempt to
contribute (#3911), which is critical to enabling JLDAP to be
compiled under Java v1.5 (it currently fails). This issue was
successfully submitted Aug 1 and has now COMPLETELY DISAPPEARED FROM
ITS!
Disappeared
out:
http://www.openldap.org/lists/openldap-software/200505/msg00218.html
...it was never acknowledged as being a problem :(
Thanks for not taking my venting/feedback personally. Let me know what I
can do.
Jon Roberts
www.mentata.com
Jonathan Villa wrote:
I tried adding this...worth a shot
index member eq,pres,sub
The member attribute is of the distinguished name syntax, and therefore
has no substring (sub) indexing capability.
Jon Roberts
www.mentata.com
P.S. My posts always get added about an hour
failing when the
directory server is bounced ie. your solution can be my failure. This
separate issue is not surprising, but I will be interested to code a fix :)
Jon Roberts
www.mentata.com
=OpenLDAP+2.3-Releaseformat=html
Bound books tend to lag with development on this project.
Jon Roberts
www.mentata.com
?
Jon Roberts
www.mentata.com
of referrals, and it could be part of
your problem.
Jon Roberts
www.mentata.com
or BDB 4.3 when doing 'db_load' commands and running slapadd on various
size databases.
hdb or bdb backend?
Evaluating slapd's performance under BDB 4.4 is still underway.
Please share results when you can.
Jon Roberts
www.mentata.com
Eric Irrgang wrote:
On Wed, 21 Dec 2005, Jon Roberts wrote:
With the 6000 calls, are you doing reads or searches? There is a
What do you mean by 'reads'? Is this an LDAP operation that has passed me
by or do you just mean a simple search, like setting the search base to
the DN you
aware of them on several occasions.
So peace on earth, good will towards men, and perhaps we'll find a more
cooperative community in our stocking ;)
Jon Roberts
www.mentata.com
or disadvantages. From what I
recall, Howard Chu refers to saslauthd as worthless even when
configuring SASL. What is the essential difference between having slapd,
saslauthd, and/or the client itself performing kerberos authentication?
Jon Roberts
www.mentata.com
slapd.conf file. The error message you are getting indicates
that you are not finding the CA for verification.
Jon Roberts
www.mentata.com
the line:
TLSCACertificateFile /path/to/your/cacert.pem
in your slapd.conf file. The error message you are getting indicates
that you are not finding the CA for verification.
Jon Roberts
www.mentata.com
=shadshed,dc=com
ldap_bind: Invalid credentials (49)
Need the -D cn=admin,dc=shadshed,dc=com to identify who you are
authenticating as.
Jon Roberts
www.mentata.com
obviously did not use the ip as the
name in the certificate. Is that advice specific to ldapsearch,
StartTLS, or something else I might be confused about?
Jon Roberts
www.mentata.com
Kurt D. Zeilenga wrote:
On Wednesday 15 February 2006 15:40, Jon Roberts wrote:
Quanah Gibson-Mount wrote:
You have to use the name in your search that matches the name in the
certificate for TLS to work.
In JLDAP clients I can connect to a remote ldaps server by using the ip
address
com.novell.ldap.DsmlConnection. It's
probably missing a few other fixes in OpenLDAP CVS made since then, though.
On 2/20/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
The novell-jldap-devel-2005.03.29-1netware_windows.zip has a ldap.jar, but
there is no support for DSML, because there is no DSMLConnection.class.
Jon
mallapadi niranjan wrote:
does openldap have a script that automatically runs
db_recover.
With OpenLDAP 2.3, slapd (with BDB backend) automatically runs
db_recover on unclean shutdowns. In other words, for updated
implementations such a script is not necessary.
Jon Roberts
www.mentata.com
to add more
auxiliary object classes without issue. I was also able to add
structural objectclasses to entries on other LDAP implementations (ages
ago), but I'd wager that was due more to promiscuity than added
intelligence.
Jon Roberts
www.mentata.com
openssl.cnf available readable
-rwxr-xr-x 1 root root 9446 2006-02-25 17:16 openssl.cnf
I don't believe this is relevant to OpenLDAP at all.
Jon Roberts
www.mentata.com
servers, doubly so.
Jon Roberts
www.mentata.com
,
so if upgrading is possible that might be the first thing to try.
Jon Roberts
www.mentata.com
users rights
access on ldap?
man slapd.access
Jon Roberts
www.mentata.com
further give access to the ou=Widgets node. Apparently that's wrong, so
now I don't understand the distinction.
Furthermore, is there a way to grant a WHO the ability to delete an
entire branch, including the top node, without using regex style or
multiple access control statements?
Jon Roberts
framework can support REST accessible calls to DSML
representations of data:
http://www.mentata.com/ldaphttp/
Since this problem is not OpenLDAP specific, you may want to try a more
general forum.
Jon Roberts
www.mentata.com
have access to the
first results before the last ones are in.
What am I doing wrong?
Expecting the software to behave how it does not.
Jon Roberts
www.mentata.com
help?
Jon Roberts
www.mentata.com
?
No, but since you're *I* should probably put some clarification on the
JLDAP javadocs on my lengthy todo list.
Jon Roberts
www.mentata.com
s/since you're *I*/since you're the second person posting with
confusion on this, *I*/
Jon Roberts
www.mentata.com
four biblical books in 11
translations I can do a full substring index and get by with:
set_lk_max_locks 8000
set_lk_max_objects 8000
in my DB_CONFIG.
Jon Roberts
www.mentata.com
to find this OpenSSL install. What is OpenLDAP
configure looking for that it isn't finding?
Jon Roberts
www.mentata.com
Jeronimo Zucco wrote:
Jon Roberts escreveu:
Fedora 7
OpenSSL 0.9.8e
Heimdal 0.8.1
Cyrus-SASL 2.1.22
OpenLDAP 2.3.36
I built Heimdal and Cyrus-SASL without issue using the same
environment and they appeared to find this OpenSSL install. What is
OpenLDAP configure looking for that it isn't
Jeronimo Zucco wrote:
Jon Roberts escreveu:
Jeronimo Zucco wrote:
Jon Roberts escreveu:
Fedora 7
OpenSSL 0.9.8e
Heimdal 0.8.1
Cyrus-SASL 2.1.22
OpenLDAP 2.3.36
I built Heimdal and Cyrus-SASL without issue using the same
environment and they appeared to find this OpenSSL install. What
Robert Klopotoski, Jr. wrote:
How do I configure slapd(8) to prevent two objects in the database
from having the same value in a particular attribute? That is, how do
I configure slapd(8) ensure that values of a particular attribute are
unique throughout the database?
man slapo-unique
Jon
prefer to use the latest version.
Thanks for all the help.
Jon Roberts
www.mentata.com
Jon Roberts escreveu:
I built OpenSSL with:
./config --prefix=/usr/local --openssldir=/usr/local/openssl
which puts the libs in /usr/local/lib, the includes in
/usr/local/include/openssl (which I believe
for now. Thanks so much for that solution!
Jon Roberts
www.mentata.com
Wayne Bruce wrote:
There should be a config.log file in the directory in which you ran
configure. Load that into an editor and scan for the checking for...
message. That might give you a clue to what is missing.
I
overlays) should be available in the consequent build.
Jon Roberts
www.mentata.com
compiled dso support into my own OpenSSL install (an OpenSSL configure
default), which would require dynamic library support for the OpenLDAP
build. I rebuilt OpenSSL with the no-dso option and then OpenLDAP built
fine.
Jon Roberts
www.mentata.com
a consequence of
delivering applications for multiple clients but not wanting to have a
separate development server for each one. The scenario seems to be
accommodated; for example the -n option for slapadd/slapcat.
Jon Roberts
www.mentata.com
It's a small world, but I wouldn't want to paint
Simon Renshaw wrote:
Is there a way to change the port that OpenLDAP uses?
http://www.openldap.org/software/man.cgi?query=slapdformat=html
Check the -h option.
Jon Roberts
www.mentata.com
. That's a good thing so long as it's still thoroughly reliable.
Jon Roberts
www.mentata.com
, and information from
your slapd configuration.
(Sorry for my english)
Seems fine, actually.
Jon Roberts
www.mentata.com
) in another attribute.
Just some quick thoughts.
Jon Roberts
www.mentata.com
Zhang Weiwu wrote:
I am setting up a business directory of contact persons and companies. I
have this structure in mind:
ou=companies,dc=demo
o=company name 1, ou=companies,dc=demo
o=company name 2, ou
: mclame
What is the point of having duplicate values here?
msSFUName: mclame
unixHomeDirectory: /home/mclame
msSFUHomeDirectory: /home/mclame
.
Again, you probably need to spend some quality time with RFC 2849 and
any other resources you have on LDIF.
Jon Roberts
www.mentata.com
51 matches
Mail list logo