hi roland,
attached you will find
/var/lib/ldap-account-manager/config/lam.conf
i changed the password hash to "bla bla" and the domain to
"sub.example.org".
my server runs on "pdc2.sub.example.org" - short "pdc2".
best regards
frank
Am 2020-11-03 um 21:47 schrieb Roland Gruber:
Hi Frank,
the config looks fine. Can you provide the server profile file?
You find it in /var/lib/ldap-account-manager/config. It ends with
".conf".
If in doubt you can also send via private email.
Best regards
Roland
Am 03.11.20 um 20:14 schrieb ldapaccma...@roell.co:
hi roland,
UID and GID seem to be ok (see attached screenshot).
are there more required fields?
where can i find the server profile?
best regards
frank
Am 2020-11-03 um 19:48 schrieb Roland Gruber:
Hi Frank,
please edit your server profile and check on Module settings tab if all
required fields are filled. This message occurs when the Unix settings
e.g. miss min/max values for UID/GID range.
https://www.ldap-account-manager.org/static/doc/manual/ch03s02.html#idm841
Best regards
Roland
Am 03.11.20 um 14:10 schrieb ldapaccma...@roell.co:
hello marco,
thank you for your reply.
i looked at the link given, but i do not understand, how it is
related to my problem, e.g. your error message differs from mine.
well, your thread gave me the idea to do the following:
- stop slapd systemctl stop slapd
- start slapd with debug level 256 (see: man slapd.conf, loglevel)
slapd -d 256
- open the LAM-page that caused the error message
result: slapd performs without any error.
i think my problem is located in the LAM-domain, not in the
slapd-domain.
best regards frank
_______________________________________________ Lam-public mailing
list Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public
_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public
_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public
_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public
# LDAP Account Manager configuration
#
# Please do not modify this file manually. The configuration can be done
completely by the LAM GUI.
#
###################################################################################################
# server address (e.g. ldap://localhost:389 or ldaps://localhost:636)
ServerURL: ldap://pdc2:389
# list of users who are allowed to use LDAP Account Manager
# names have to be seperated by semicolons
# e.g. admins: cn=admin,dc=yourdomain,dc=org;cn=root,dc=yourdomain,dc=org
Admins: cn=admin,dc=sub,dc=example,dc=org
# password to change these preferences via webfrontend (default: lam)
Passwd: {SSHA}Bla-Bla
# suffix of tree view
# e.g. dc=yourdomain,dc=org
treesuffix: dc=sub,dc=example,dc=org
# default language (a line from config/language)
defaultLanguage: en_GB.utf8
# Path to external Script
scriptPath:
# Server of external Script
scriptServer:
# Access rights for home directories
scriptRights: 750
# Number of minutes LAM caches LDAP searches.
cachetimeout: 5
# LDAP search limit.
searchLimit: 0
# Module settings
modules: posixAccount_user_minUID: 10000
modules: posixAccount_user_maxUID: 30000
modules: posixAccount_host_minMachine: 50000
modules: posixAccount_host_maxMachine: 60000
modules: posixGroup_group_minGID: 10000
modules: posixGroup_group_maxGID: 20000
modules: posixGroup_pwdHash: SSHA
modules: posixAccount_pwdHash: SSHA
# List of active account types.
activeTypes: user,group
types: suffix_user: ou=people,dc=sub,dc=example,dc=org
types: attr_user: #uid;#givenName;#sn;#uidNumber;#gidNumber
types: modules_user: inetOrgPerson,posixAccount,shadowAccount
types: suffix_group: ou=groups,dc=sub,dc=example,dc=org
types: attr_group: #cn;#gidNumber;#memberUID;#description
types: modules_group: posixGroup
# Password mail subject
lamProMailSubject: Your password was reset
# Password mail text
lamProMailText: Dear @@givenName@@ @@sn@@,+::++::+your password was reset to:
@@newPassword@@+::++::++::+Best regards+::++::+deskside support+::+
serverDisplayName:
# enable TLS encryption
useTLS: no
# follow referrals
followReferrals: false
# paged results
pagedResults: false
referentialIntegrityOverlay: false
hidePasswordPromptForExpiredPasswords: false
# time zone
timeZone: Europe/London
scriptUserName:
scriptSSHKey:
scriptSSHKeyPassword:
# Access level for this profile.
accessLevel: 100
# Login method.
loginMethod: list
# Search suffix for LAM login.
loginSearchSuffix: dc=yourdomain,dc=org
# Search filter for LAM login.
loginSearchFilter: uid=%USER%
# Bind DN for login search.
loginSearchDN:
# Bind password for login search.
loginSearchPassword:
# HTTP authentication for LAM login.
httpAuthentication: false
# Password mail from
lamProMailFrom:
# Password mail reply-to
lamProMailReplyTo:
# Password mail is HTML
lamProMailIsHTML: false
# Allow alternate address
lamProMailAllowAlternateAddress: true
jobsBindPassword:
jobsBindUser:
jobsDatabase:
jobsDBHost:
jobsDBPort:
jobsDBUser:
jobsDBPassword:
jobsDBName:
jobToken: 803823404757
pwdResetAllowSpecificPassword: true
pwdResetAllowScreenPassword: true
pwdResetForcePasswordChange: true
pwdResetDefaultPasswordOutput: 2
twoFactorAuthentication: none
twoFactorAuthenticationURL: https://localhost
twoFactorAuthenticationClientId:
twoFactorAuthenticationSecretKey:
twoFactorAuthenticationDomain:
twoFactorAuthenticationInsecure:
twoFactorAuthenticationLabel:
twoFactorAuthenticationOptional:
twoFactorAuthenticationCaption:
twoFactorAuthenticationAttribute:
hideDnPart:
tools: tool_hide_toolPDFEditor: false
tools: tool_hide_toolServerInformation: false
tools: tool_hide_toolWebauthn: false
tools: tool_hide_toolMultiEdit: false
tools: tool_hide_ImportExport: false
tools: tool_hide_toolSchemaBrowser: false
tools: tool_hide_toolFileUpload: false
tools: tool_hide_toolProfileEditor: false
tools: tool_hide_toolTests: false
tools: tool_hide_toolOUEditor: false
_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public
