Hi,
you probably have to specify the full dn of the ldap user in your
config.xml:
...
<option>
<name>ldaproot</name>
<value>cn=root, o=myorg, c=ve</value>
</option>
...
Regards
Johannes Derek
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf
> Of Jorge Redondo Flames
> Sent: Friday, March 10, 2006 9:51 PM
> To: [email protected]
> Subject: [Openca-Users] Problems with LDAP Update
>
>
> Hi all,
>
> I am trying to update an ldap directory using the LDAP Web
> Interface--LDAP Update--CA Certificate.
> The operation failed; the log says (stderr.log):
> --------------------------------------------------------------
> -------------------------------------------------
> OpenCA::LDAP->add_object: Started add_object ...
> OpenCA::LDAP->add_object: certificate present ...
> OpenCA::LDAP->add_object: role ok ...
> OpenCA::LDAP->add_object: Information of the Object:
> OpenCA::LDAP->add_object: dn [EMAIL PROTECTED],CN=AC
> MYORG,OU=Informatica,O=MYORG,C=VE
> OpenCA::LDAP->add_object: cn AC MYORG
> OpenCA::LDAP->add_object: serID 0
> OpenCA::LDAP->add_object: email [EMAIL PROTECTED]
> OpenCA::LDAP->add_object: ou ARRAY(0xa2e86b4)
> OpenCA::LDAP->add_object: o MYORG
> OpenCA::LDAP->add_object: l
> OpenCA::LDAP->add_object: st
> OpenCA::LDAP->add_object: c VE
> OpenCA::LDAP->add_object: End of the information of the Object
> OpenCA::LDAP->connect: ldap2://127.0.0.1:389
> OpenCA::LDAP->setError: 34: invalid DN
> OpenCA::LDAP->add_object: Cannot bind to server.
> --------------------------------------------------------------
> -------------------------------------------------
>
> My slapd.conf:
> --------------------------------------------------------------
> -------------------------------------------------
> suffix "o=myorg,c=ve"
> rootdn "cn=root, o=myorg, c=ve"
> rootpw {SSHA}y+fUL3rTa5pyVgzLqs//X40JkX3uoZh2
> directory "/var/lib/ldap"
> --------------------------------------------------------------
> -------------------------------------------------
>
> My config.xml (ldap portion, before running configure_etc):
> --------------------------------------------------------------
> -------------------------------------------------
> <option>
> <name>ldap_host</name>
> <value>127.0.0.1</value>
> </option>
> <option>
> <name>ldap_port</name>
> <value>389</value>
> </option>
> <option>
> <name>ldaproot</name>
> <value>root</value>
> </option>
> <option>
> <name>ldaprootpwd</name>
> <value>mypwd</value>
> </option>
> <option>
> <name>useLDAP</name>
> <value>yes</value>
> </option>
> <option>
> <name>update_ldap_automatic</name>
> <value>no</value>
> </option>
> --------------------------------------------------------------
> -------------------------------------------------
>
> Also, my ldap.xml has protocol version to 3.
> I think the problem might be a bad order in the calls:
>
> OpenCA::LDAP->add_object: cn AC MYORG
> OpenCA::LDAP->add_object: serID 0
> OpenCA::LDAP->add_object: email [EMAIL PROTECTED]
> OpenCA::LDAP->add_object: ou ARRAY(0xa2e86b4)
> OpenCA::LDAP->add_object: o MYORG
> OpenCA::LDAP->add_object: l
> OpenCA::LDAP->add_object: st
> OpenCA::LDAP->add_object: c VE
>
> Because c=VE is not followed by o=MYORG. But it is just intuition.
> If it happens to be the problem, then i am not sure about how
> to solve it.
> Anyway, can you help me?
>
> Jorge
>
>
>
>
>
>
>
>
> -------------------------------------------------------
> This SF.Net email is sponsored by xPML, a groundbreaking
> scripting language
> that extends applications into web and mobile media. Attend
> the live webcast
> and join the prime developer group breaking into this new
> coding territory!
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&;
dat=121642
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
-------------------------------------------------------
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid�0944&bid$1720&dat�1642
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
