RE: [Fedora-directory-users] getting solaris 8 to talk to FDS

[Tay, Gary]

It is kind of messy here, pls don't continue to do any other thing, I strongly 
suggest you start from FRESH and reinstall FDS7.1 again.
 
OK assuming you prefer to use foo.com as the LDAP domain (nisdomain), the 
baseDN (where the topmost rootDN is) will be dc=foo,dc=com, if you choose 
"populate with sample data", I think the ou=People and ou=Groups will be 
created, note that ou=group will not be created.
 
I am not sure and couldn't recall if FDS7.1 installation will create the 
nisDomain object in the rootDN, if it does not, you could create it by 
accessing this rootDN in admin server/open directory, click rootDN, add an 
objectClass "nisDomainObject" and attribute "nisDomain", with value "foo.com" 
in it (without the quotes).
 
If you query everything, the rootDN is listed first, it will be something like:
 
# /usr/bin/ldapsearch –h ldap1.foo.com -b "dc=foo,dc=com" -L "objectclass=*" | 
more
dn: dc=foo,dc=com
dc: foo
objectClass: top
objectClass: domain
objectClass: nisDomainObject
nisDomain: foo.com
...
 
Since most DS product standardize on using ou=group as the group data OU, 
instead of ou=Groups, do add "ou=group" using admin console.
 
Again whatever you do, don't jump, don't do "ldaplist" without first making 
sure "ldapclient" run OK, ldap_cachemgr started OK and show no error in its 
log, and so on.
 
Gary
 

        -----Original Message----- 
        From: [EMAIL PROTECTED] on behalf of Igor 
        Sent: Thu 8/25/2005 11:17 PM 
        To: General discussion list for the Fedora Directory server project. 
        Cc: 
        Subject: RE: [Fedora-directory-users] getting solaris 8 to talk to FDS
        
        



        --- "Tay, Gary" <[EMAIL PROTECTED]> wrote:
        
        > I think you should put "objectclass=*" (search filter) at the end, see
        > "man ldapsearch"
        >
        > If you need to do anything and are not familar with LDAP command 
tools,
        > use the admin server to do it.
        >
        > IIRC all your LDAP data should have baseDN dc=composers,dc=foo,dc=com,
        > if your nisdomain (LDAP domain) is set as composers.foo.com.
        
        I changed it:
        
        # foo.com, foo.com
        dn: nisdomain=foo.com,dc=foo,dc=com
        objectClass: top
        objectClass: nisdomainobject
        nisDomain: foo.com
        
        bash-2.03# ldaplist -l
        ldaplist: Object not found (LDAP ERROR (50): Insufficient access.)
        
        Gary, sorry for being dense but where's the baseDN?  I need to check 
what it is...
        
        __________________________________________________
        Do You Yahoo!?
        Tired of spam?  Yahoo! Mail has the best spam protection around
        http://mail.yahoo.com
        
        --
        Fedora-directory-users mailing list
        Fedora-directory-users@redhat.com
        https://www.redhat.com/mailman/listinfo/fedora-directory-users
        

<<winmail.dat>>

--
Fedora-directory-users mailing list
Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users