Oh, and I should add that the manually-created /var/run/openldap
directory, per the bug's remediation, is removed after every reboot -
something more is needed to keep the directory from disappearing...
Thanks,
Kent
On 1/17/10 7:12 PM, Kent Watsen wrote:
Installed SUNWopenldap on 2009.6. Enabling the network/ldap/server
doesn't work and `svcs -xv` shows it in maintenance mode. Inspection
of /var/svc/log/network-ldap-server:openldap_24.log includes:
[ Jan 17 17:27:08 Enabled. ]
[ Jan 17 17:27:08 Executing start method ("/usr/lib/slapd -u openldap
-g openldap -f /etc/openldap/slapd.conf"). ]
[ Jan 17 17:27:08 Method "start" exited with status 0. ]
[ Jan 17 17:27:08 Stopping because all processes in service exited. ]
Googling found this related bug:
http://bugs.opensolaris.org/view_bug.do?bug_id=6880841
While this bug correctly fixes the missing /var/run/openldap directory
issue, it incorrectly tests that all is well by directly running
`/usr/lib/slapd -f /etc/openldap/openldap.conf", which is not what the
SMF service does. While the SMF service does try allow the executable
to open privaldge ports, that doesn't seem to be enough as the service
correctly starts after removing the following from
/var/svc/manifest/network/ldap/ldap-olslapd.xml:
<method_context>
<method_credential user='openldap' group='openldap'
privileges='basic,net_privaddr' />
</method_context>
Anybody know the right fix?
Thanks,
Kent
_______________________________________________
opensolaris-discuss mailing list
[email protected]
_______________________________________________
opensolaris-discuss mailing list
[email protected]
