Works like a charm, thanks.
> ldappasswd -vv -x -w <managerpassword> -D
> "cn=Manager,dc=<exampledomain>,dc=com" -h localhost -s <userpassword>
> "uid=<username>,ou=People,dc=my2-domain,dc=com"
For those doing this fix, a note: the local LDAP configuration has the
users in 'ou=users' and not 'ou=People'. And if you are sensible on
security, use -W and -S instead of -w -s, so you don't have to type
passwords cleartext on the command-line.
Cheers,
Andre Reis
Rafiu Fakunle wrote:
Andre Reis wrote:
Rafiu,
Good to see things are moving in the right direction. I've been
testing these new implementations (FTP and LDAP) today, and I'm having
some problems.
LDAP is working well, apparently; I'd like to suggest that, in
'Accounts -> Authentication', an option like 'Use local account
management' is added, so that choosing it would automatically
configure the system to use 127.0.0.1 as the LDAP server, and the DNs
and password set to match the ones the user enters in 'Services ->
LDAP Settings'. For the sake of simplicity and user friendliness.
Already on our todo.
FTP and HTTP, however, are another matter. Note that I'm not using a
'clean' installation, I had used the ldap.tgz najones contributed (but
updated with --replace-files). Still:
I can't login with ftp, I get these errors:
> 20:28:14 openfiler proftpd[4742] (...): FTP session opened.
> 20:28:20 openfiler proftpd[4742] (...): PAM(andrer): Authentication
failure.
> 20:28:20 openfiler proftpd[4742] (...): USER andrer (Login failed):
No such user found.
> 20:29:12 openfiler proftpd[4742] (...): FTP session closed.
And /var/log/messages says:
> 20:28:07 openfiler PAM-listfile[4741]: PAM-listfile: Couldn't open
/etc/ftpusers
> 20:28:18 openfiler proftpd[4742]: pam_ldap: error trying to bind as
user "uid=andrer,ou=users,dc=mesh2,dc=com" (Invalid
credentials)
Same problem with plain http:
> 20:31:31 openfiler httpd(pam_unix)[4923]: authentication failure;
logname= uid=48 euid=48 tty= ruser= rhost= user=andrer
> 20:31:31 openfiler pam_winbind[4923]: write to socket failed!
> 20:31:31 openfiler pam_winbind[4923]: internal module error (retval
= 3, user = `andrer'
Something's fishy. Hope this helps.
there's no userPassword attribute (posixAccount object).
you can fix with:
ldappasswd -vv -x -w <managerpassword> -D
"cn=Manager,dc=<exampledomain>,dc=com" -h localhost -s <userpassword>
"uid=<username>,ou=People,dc=my2-domain,dc=com"
As I mentioned in the post regarding 2.2 delay, there was some work left
to do with local LDAP configuration.
Thx,
R.
Regards,
Andre Reis
Rafiu Fakunle wrote:
Hi All,
Just a quick note to let you know that the scheduled release for
today of Openfiler 2.2 has been put back a couple of days.
The good news is that you can now test some nice new functionality.
1) Fixed FTP support - now using proftpd instead of mod_ftp. Proftpd
proved to be very simple to integrate (shout out to whoever suggested
it)
2) Local Account Management - this long sought after feature was
finally implemented by a very enterprising OF user. Nathan Jones
(najones[AT]vt.edu) got fed-up with waiting and wrote it himself.
Don't u just love Open Source? I'm working on a couple of further
last-minute tweaks to this (hence the delay).
You can check these two features out now (along with fixes to several
reported bugs - details to follow in 2.2 release notes) :
conary update openfiler
conary update proftpd
2.2 will be out within the next couple of days.
Thanks for your patience and thanks for using Openfiler!
R.
_______________________________________________
Openfiler-users mailing list
[email protected]
https://lists.openfiler.com/mailman/listinfo/openfiler-users
_______________________________________________
Openfiler-users mailing list
[email protected]
https://lists.openfiler.com/mailman/listinfo/openfiler-users
_______________________________________________
Openfiler-users mailing list
[email protected]
https://lists.openfiler.com/mailman/listinfo/openfiler-users
