On Fri, Apr 07, 2006 at 01:47:02PM +1000, Bryan Lee wrote:
> Hi,
>
> I'm running Linux Gentoo:
>
> I installed OpenLDAP 2.3.20 and did exactly on
> http://www.openldap.org/doc/admin23/quickstart.html
>
> I installed Qmail 1.03, patched it, and did exactly on
> http://www.lifewithqmail.org/ldap/ up till 4.4 stuck there.
>
> I got slapd running.
>
> While doing 4.4b, i got an error:
> ldapadd -acrv -h localhost -D "cn=Manager,dc=bryan.,dc=sg." -w testpasswd -f
> new2.ldif
> ldap_initialize( ldap://localhost )
> ldap_bind: Invalid credentials (49)
>
> I also tried:
>
> ldapadd -x -D "cn=Manager,dc=bryan.,dc=sg." -W -f new2.ldif
> Enter LDAP Password:
> adding new entry "ou=accounts, o=bryan, c=sg"
> ldap_add: Server is unwilling to perform (53)
> additional info: no global superior knowledge
>
First of all dc=bryan.,dc=sg. != dc=bryan,dc=sg.
But the real problem here in the second case is that you are missing the
root node in the database. You need an entry for "dc=bryan,dc=sg" to be
able to add a node below.
> My new2.ldif is like this:
>
> dn: ou=accounts, o=bryan, c=sg
This can not work. You are switching the base DN here. You did not
configure "o=bryan, c=sg" in your database and so that can not work.
Either switch the basedn in slapd.con to "o=bryan, c=sg" or change your
ldif to use "dc=bryan,dc=sg".
Anyway in both cases your still not adding the main top node of the LDAP
tree and so it is not possible to add stuff below it.
e.g.
dn: o=bryan, c=sg
objectclass: top
objectclass: organization
o: bryan
Btw. this are openldap specific issues and in no way related to
qmail-ldap.
> objectclass: top
> objectclass: organizationalUnit
> ou: accounts
>
> dn: uid=test, ou=accounts, o=bryan, c=sg
> cn: Elvis Presley
> sn: Presley
> objectClass: top
> objectClass: person
> objectClass: inetOrgPerson
> objectClass: qmailUser
> mail: [EMAIL PROTECTED]
> mailAlternateAddress: [EMAIL PROTECTED]
> mailAlternateAddress: [EMAIL PROTECTED]
> mailAlternateAddress: [EMAIL PROTECTED]
> mailHost: mail.bryan.sg
> mailMessageStore: /var/qmail/maildirs/elvis
> uid: elvis
> userPassword: {MD5}X03MO1qnZdYdgyfeuILPmQ==
>
> My /usr/local/etc/openldap/slapd.conf is:
>
> include /usr/local/etc/openldap/schema/core.schema
> include /usr/local/etc/openldap/schema/cosine.schema
> include /usr/local/etc/openldap/schema/inetorgperson.schema
> include /usr/local/etc/openldap/schema/nis.schema
> include /usr/local/etc/openldap/schema/qmail.schema
> pidfile /usr/local/var/run/slapd.pid
> argsfile /usr/local/var/run/slapd.args
>
> database bdb
> suffix "dc=bryan,dc=sg"
> rootdn "cn=Manager,dc=bryan,dc=sg"
> # Cleartext passwords, especially for the rootdn, should
> # be avoid. See slappasswd(8) and slapd.conf(5) for details.
> # Use of strong authentication encouraged.
> rootpw {MD5}2FeO34RYzgb7xbt2pYxcpA==
> # The database directory MUST exist prior to running slapd AND
> # should only be accessible by the slapd and slap tools.
> # Mode 700 recommended.
> directory /usr/local/var/openldap-data
> # Indices to maintain
> index objectClass eq
>
> --
>
> I would like to move on, been stuck with this, someone knows?
>
> help appreciated.
--
:wq Claudio
