J Klein
Sun, 05 Aug 2001 14:53:19 -0700
More information for other Kandalaya VishwaKarma users . . .
Raju recommended that I try version 0.22 or later. I manually installed
perl-ldap 0.22 and no longer receive the "get_value" error.
However, I was still unable to create resellers. I receive the following
message after entering the reseller information (name, quotas, ip, etc) and
clicking 'Add Reseller' button.
--
Adding Reseller test2...
Creating Reseller test2...
Unable to create reseller test2. Please contact the system administrator
--
I figured that this had to do with a corrupted LDAP database so I removed
/var/lib/ldap/* and recreated the LDAP database using ldif2ldbm -i MYLDIF.
This did not fix the problem. Same symptoms.
I can use the following line to view the database contents added by the
MYLDIF file when ACLs are NOT included in the slapd.conf. When I put the
ACLs back into the slapd.conf file, this ldapsearch returns null results.
ldapsearch -b "dc=vktest,dc=datility,dc=net" "objectclass=*"
I have altered my ACLs and am now able to create, edit, and delete
resellers. My old ACLs and my new ACLs are shown below. I still need to
clean up my new ACLs as I do not know exactly which line fixed the problem
(yet). I gave the manager write privileges in each of the access statements.
And then added the last 5 or 6 lines from scratch.
# OLD ACLS - slapd.conf
#
# ACL's for VishwaKarma
#
access to dn="reseller=(.*),dc=vktest,dc=datility,dc=net"
by dn="reseller=$1,dc=vktest,dc=datility,dc=net" write
by * none
access to dn="hostName=.*,reseller=(.*),dc=vktest,dc=datility,dc=net"
by dn="reseller=$1,dc=vktest,dc=datility,dc=net" write
by * none
access to dn="hostname=.*,type=hostMap,dc=vktest,dc=datility,dc=net"
by * read
access to dn="type=hostMap,dc=vktest,dc=datility,dc=net"
by dn="reseller=.*,dc=vktest,dc=datility,dc=net" write
by * none
access to
dn="user=.*,hostname=(.*),reseller=(.*),dc=vktest,dc=datility,dc=net"
by self write
by dn="hostname=$1,reseller=$2,dc=vktest,dc=datility,dc=net" write
by dn="reseller=$2,dc=vktest,dc=datility,dc=net" write
by * none
access to dn=".*"
by dn="cn=manager,dc=vktest,dc=datility,dc=net" write
by * none
# NEW ACLS - slapd.conf
#
# ACL's for VishwaKarma
#
access to dn="reseller=(.*),dc=vktest,dc=datility,dc=net"
by dn="cn=manager,dc=vktest,dc=datility,dc=net" write
by dn="reseller=$1,dc=vktest,dc=datility,dc=net" write
by * none
access to dn="hostName=.*,reseller=(.*),dc=vktest,dc=datility,dc=net"
by dn="cn=manager,dc=vktest,dc=datility,dc=net" write
by dn="reseller=$1,dc=vktest,dc=datility,dc=net" write
by * none
access to dn="hostname=.*,type=hostMap,dc=vktest,dc=datility,dc=net"
by dn="cn=manager,dc=vktest,dc=datility,dc=net" write
by * read
access to dn="type=hostMap,dc=vktest,dc=datility,dc=net"
by dn="cn=manager,dc=vktest,dc=datility,dc=net" write
by dn="reseller=.*,dc=vktest,dc=datility,dc=net" write
by * none
access to
dn="user=.*,hostname=(.*),reseller=(.*),dc=vktest,dc=datility,dc=net"
by self write
by dn="cn=manager,dc=vktest,dc=datility,dc=net" write
by dn="hostname=$1,reseller=$2,dc=vktest,dc=datility,dc=net" write
by dn="reseller=$2,dc=vktest,dc=datility,dc=net" write
by * none
access to dn=".*"
by dn="cn=manager,dc=vktest,dc=datility,dc=net" write
# by * none
by dn="cn=manager,dc=vktest,dc=datility,dc=net" read
access to dn=".*,dc=vktest,dc=datility,dc=net"
by dn="cn=manager,dc=vktest,dc=datility,dc=net" write
by * none
I will submit my final ACLs once I use trial and error to figure out which
lines are (not) necessary for my particular installation. Hopefully this
info will help someone out there.
So far, so good. VK seems to work nicely.
Thanks,
Jason
---
Jason Klein
[EMAIL PROTECTED]
----- Original Message -----
From: "Raju Mathur" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, August 05, 2001 1:08 AM
Subject: Re: Perl Net::LDAP versions??
> perl-ldap 0.15 doesn't have the get_value method. Please use 0.22 or
> later (whichever works).
>
> Regards,
>
> -- Raju
>
> >>>>> "Klein" == J Klein <[EMAIL PROTECTED]> writes:
>
> Klein> Problem Update: (8/4/01) I was actually trying to build /
> Klein> install perl-ldap-0.24.tar.gz. That must have been a typo
> Klein> in my previous message.
>