[FUG-BR] Problemas com a configuração do LDAP

2009-01-22 Por tôpico Miguel Martins
Amigos,

   Estou configurando um LDAP + SAMBA + AD no freebsd 7.0 seguindo o how
to do site só que me apresenta o seguinte erro abaixo. Podem me orientar no
que esto errando ?


sauron# sed -i.bak 's/dominio/ASSESC/g' base.ldif
sauron# ldapmodify -x -D cn=root,dc=assesc,dc=edu,dc=br -W -f
/root/base.ldif
Enter LDAP Password:
modifying entry dc=assesc,dc=edu,dc=br

modifying entry ou=People,dc=assesc,dc=edu,dc=br

modifying entry ou=Group,dc=assesc,dc=edu,dc=br

modifying entry ou=Computers,dc=assesc,dc=edu,dc=br
ldapmodify: Invalid syntax (21)
additional info: objectClass: value #1 invalid per syntax

Segue base.ldif

dn: dc=assesc,dc=edu,dc=br
dc: *ASSESC*
objectClass: top
objectClass: domain

dn: ou=People,dc=assesc,dc=edu,dc=br
ou: People
objectClass: top
objectClass: organizationalUnit

dn: ou=Group,dc=assesc,dc=edu,dc=br
ou: Group
objectClass: top
objectClass: organizationalUnit

dn: ou=Computers,dc=assesc,dc=edu,dc=br
ou: Computers
objectClass: top
objectClass: organizationalUnit



dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br

objectClass: posixGroup

objectClass: top

cn: wheel

userPassword: {crypt}*

gidNumber: 0

memberUid: root

memberUid: *miguel*



dn: cn=nogroup,ou=Group,dc=assesc,dc=edu,dc=br

objectClass: posixGroup

objectClass: top

cn: nogroup

userPassword: {crypt}*

gidNumber: 65533



dn: cn=nobody,ou=Group,dc=assesc,dc=edu,dc=br

objectClass: posixGroup

objectClass: top

cn: nobody

userPassword: {crypt}*

gidNumber: 65534



dn: uid=root,ou=People,dc=assesc,dc=edu,dc=br

uid: root

cn: Charlie 

objectClass: account

objectClass: posixAccount

objectClass: top

userPassword: {crypt}*

loginShell: /bin/csh

uidNumber: 0

gidNumber: 0

homeDirectory: /root

gecos: Charlie 



dn: uid=nobody,ou=People,dc=assesc,dc=edu,dc=br

uid: nobody

cn: Unprivileged user

objectClass: account

objectClass: posixAccount

objectClass: top

userPassword: {crypt}*

loginShell: /usr/sbin/nologin

uidNumber: 65534

gidNumber: 65534

homeDirectory: /nonexistent

gecos: Unprivileged user



dn: uid=*miguel*,ou=People,dc=assesc,dc=edu,dc=br

uid: *miguel*

cn: *Miguel Martins Jr*

objectClass: account

objectClass: posixAccount

objectClass: top

userPassword: {crypt}*

loginShell: /bin/csh

uidNumber: 1001

gidNumber: 0

homeDirectory: /home/*miguel*

gecos: *Miguel Martins Jr*



dn: uid=*sauron*,ou=Computers,dc=assesc,dc=edu,dc=br

uid: *sauron*

cn: *Servidor*

objectClass: account

objectClass: posixAccount

objectClass: top

userPassword: {crypt}*

loginShell: /usr/bin/nologin

uidNumber: 200

gidNumber: 200

homeDirectory: noexistent

gecos: *Servidor *



dn: cn=NextFreeUnixId,dc=assesc,dc=edu,dc=br
objectClass: inetOrgPerson
objectClass: sambaUnixIdPool
uidNumber: 1000
gidNumber: 1000
cn: NextFreeUnixId
sn: NextFreeUnixId



dn: zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: *assesc.edu.*br
zoneName: *assesc.edu.*br



dn: relativeDomainName=assesc.com.br,zoneName=assesc.com.br
,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: *assesc.edu.*br
zoneName: *assesc.edu.*br
dNSTTL: 3600
dNSClass: IN
SOARecord: ns1.*assesc.edu.*br. hostmaster.*assesc.edu.*br. 1 10800 3600
604800 86400
NSRecord: ns1.*assesc.edu.*br.
NSRecord: ns2.*assesc.edu.*br.
ARecord: *192.168.3.254*
MXRecord: 10 mail.*assesc.edu.*br.



dn: 
*relativeDomainName=@,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br*relativeDomainName=@,zoneName=pmbebedouro.com.br,dc=pmbebedouro,dc=com,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: @
zoneName: *assesc.edu.*br
dNSTTL: 3600
dNSClass: IN
SOARecord: ns1.*assesc.edu.*br. hostmaster.*assesc.edu.*br. 1 10800 3600
604800 86400
NSRecord: ns1.*assesc.edu.*br.
NSRecord: ns2.*assesc.edu.*br.
ARecord: *192.168.3.254*
MXRecord: 10 mail.*assesc.edu.*br.



dn: relativeDomainName=ns1,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: ns1
zoneName: *assesc.edu.*br
dNSTTL: 3600
dNSClass: IN
ARecord: *192.168.3.254*



dn: relativeDomainName=ns2,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: ns2
zoneName: *assesc.edu.*br
dNSTTL: 3600
dNSClass: IN
ARecord: *200.135.16.114*

dn: relativeDomainName=mail,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: mail
zoneName: *assesc.edu.*br
dNSTTL: 3600
dNSClass: IN
ARecord: *192.168.3.254*



dn: relativeDomainName=*sauron*,zoneName=assesc.com.br
,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: *sauron*
zoneName: *assesc.edu.*br
dNSTTL: 3600
dNSClass: IN
ARecord: *192.168.3.254*
-
Histórico: http://www.fug.com.br/historico/html/freebsd/
Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd


Re: [FUG-BR] Problemas com a configuração do LDAP

2009-01-22 Por tôpico Flavio Junior
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Linhas vazias pro ldap é final de registro...

Vas ter que aninhar todos teus registros pra evitar linhas vazias no meio deles.

- --

Flávio do Carmo Júnior aka waKKu

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: http://getfiregpg.org

iEYEARECAAYFAkl4kPAACgkQgyuXjr6dyksN3wCfVlas83q938uJL22L6KhlpiWv
yRAAnR4cPI3dF+0WesKe2rMS5/V8HFYy
=2+QG
-END PGP SIGNATURE-

On Thu, Jan 22, 2009 at 1:25 PM, Miguel Martins miguelj...@gmail.com wrote:
 Amigos,

   Estou configurando um LDAP + SAMBA + AD no freebsd 7.0 seguindo o how
 to do site só que me apresenta o seguinte erro abaixo. Podem me orientar no
 que esto errando ?


 sauron# sed -i.bak 's/dominio/ASSESC/g' base.ldif
 sauron# ldapmodify -x -D cn=root,dc=assesc,dc=edu,dc=br -W -f
 /root/base.ldif
 Enter LDAP Password:
 modifying entry dc=assesc,dc=edu,dc=br

 modifying entry ou=People,dc=assesc,dc=edu,dc=br

 modifying entry ou=Group,dc=assesc,dc=edu,dc=br

 modifying entry ou=Computers,dc=assesc,dc=edu,dc=br
 ldapmodify: Invalid syntax (21)
additional info: objectClass: value #1 invalid per syntax

 Segue base.ldif

 dn: dc=assesc,dc=edu,dc=br
 dc: *ASSESC*
 objectClass: top
 objectClass: domain

 dn: ou=People,dc=assesc,dc=edu,dc=br
 ou: People
 objectClass: top
 objectClass: organizationalUnit

 dn: ou=Group,dc=assesc,dc=edu,dc=br
 ou: Group
 objectClass: top
 objectClass: organizationalUnit

 dn: ou=Computers,dc=assesc,dc=edu,dc=br
 ou: Computers
 objectClass: top
 objectClass: organizationalUnit



 dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br

 objectClass: posixGroup

 objectClass: top

 cn: wheel

 userPassword: {crypt}*

 gidNumber: 0

 memberUid: root

 memberUid: *miguel*



 dn: cn=nogroup,ou=Group,dc=assesc,dc=edu,dc=br

 objectClass: posixGroup

 objectClass: top

 cn: nogroup

 userPassword: {crypt}*

 gidNumber: 65533



 dn: cn=nobody,ou=Group,dc=assesc,dc=edu,dc=br

 objectClass: posixGroup

 objectClass: top

 cn: nobody

 userPassword: {crypt}*

 gidNumber: 65534



 dn: uid=root,ou=People,dc=assesc,dc=edu,dc=br

 uid: root

 cn: Charlie 

 objectClass: account

 objectClass: posixAccount

 objectClass: top

 userPassword: {crypt}*

 loginShell: /bin/csh

 uidNumber: 0

 gidNumber: 0

 homeDirectory: /root

 gecos: Charlie 



 dn: uid=nobody,ou=People,dc=assesc,dc=edu,dc=br

 uid: nobody

 cn: Unprivileged user

 objectClass: account

 objectClass: posixAccount

 objectClass: top

 userPassword: {crypt}*

 loginShell: /usr/sbin/nologin

 uidNumber: 65534

 gidNumber: 65534

 homeDirectory: /nonexistent

 gecos: Unprivileged user



 dn: uid=*miguel*,ou=People,dc=assesc,dc=edu,dc=br

 uid: *miguel*

 cn: *Miguel Martins Jr*

 objectClass: account

 objectClass: posixAccount

 objectClass: top

 userPassword: {crypt}*

 loginShell: /bin/csh

 uidNumber: 1001

 gidNumber: 0

 homeDirectory: /home/*miguel*

 gecos: *Miguel Martins Jr*



 dn: uid=*sauron*,ou=Computers,dc=assesc,dc=edu,dc=br

 uid: *sauron*

 cn: *Servidor*

 objectClass: account

 objectClass: posixAccount

 objectClass: top

 userPassword: {crypt}*

 loginShell: /usr/bin/nologin

 uidNumber: 200

 gidNumber: 200

 homeDirectory: noexistent

 gecos: *Servidor *



 dn: cn=NextFreeUnixId,dc=assesc,dc=edu,dc=br
 objectClass: inetOrgPerson
 objectClass: sambaUnixIdPool
 uidNumber: 1000
 gidNumber: 1000
 cn: NextFreeUnixId
 sn: NextFreeUnixId



 dn: zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: *assesc.edu.*br
 zoneName: *assesc.edu.*br



 dn: relativeDomainName=assesc.com.br,zoneName=assesc.com.br
 ,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: *assesc.edu.*br
 zoneName: *assesc.edu.*br
 dNSTTL: 3600
 dNSClass: IN
 SOARecord: ns1.*assesc.edu.*br. hostmaster.*assesc.edu.*br. 1 10800 3600
 604800 86400
 NSRecord: ns1.*assesc.edu.*br.
 NSRecord: ns2.*assesc.edu.*br.
 ARecord: *192.168.3.254*
 MXRecord: 10 mail.*assesc.edu.*br.



 dn: 
 *relativeDomainName=@,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br*relativeDomainName=@,zoneName=pmbebedouro.com.br,dc=pmbebedouro,dc=com,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: @
 zoneName: *assesc.edu.*br
 dNSTTL: 3600
 dNSClass: IN
 SOARecord: ns1.*assesc.edu.*br. hostmaster.*assesc.edu.*br. 1 10800 3600
 604800 86400
 NSRecord: ns1.*assesc.edu.*br.
 NSRecord: ns2.*assesc.edu.*br.
 ARecord: *192.168.3.254*
 MXRecord: 10 mail.*assesc.edu.*br.



 dn: relativeDomainName=ns1,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: ns1
 zoneName: *assesc.edu.*br
 dNSTTL: 3600
 dNSClass: IN
 ARecord: *192.168.3.254*



 dn: relativeDomainName=ns2,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: ns2
 zoneName: *assesc.edu.*br
 dNSTTL: 3600
 dNSClass: IN
 ARecord: *200.135.16.114*

 dn: 

Re: [FUG-BR] Problemas com a configuração do LDAP

2009-01-22 Por tôpico Miguel Martins
desculpe ...
ele esta assim no servidor

sauron# more base.ldif
dn: dc=assesc,dc=edu,dc=br
dc: ASSESC
objectClass: top
objectClass: domain

dn: ou=People,dc=assesc,dc=edu,dc=br
ou: People
objectClass: top
objectClass: organizationalUnit

dn: ou=Group,dc=assesc,dc=edu,dc=br
ou: Group
objectClass: top
objectClass: organizationalUnit

dn: ou=Computers,dc=assesc,dc=edu,dc=br
ou: Computers
objectClass: top
objectClass: organizationalUnit

dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br
objectClass: posixGroup
objectClass: top
cn: wheel
userPassword: {crypt}*
gidNumber: 0
memberUid: root
memberUid: miguel

dn: cn=nogroup,ou=Group,dc=assesc,dc=edu,dc=br
objectClass: posixGroup
objectClass: top
cn: nogroup
userPassword: {crypt}*
gidNumber: 65533

dn: cn=nobody,ou=Group,dc=assesc,dc=edu,dc=br
objectClass: posixGroup
objectClass: top
cn: nobody
userPassword: {crypt}*
gidNumber: 65534

dn: uid=root,ou=People,dc=assesc,dc=edu,dc=br
uid: root
cn: Charlie 
objectClass: account
objectClass: posixAccount
objectClass: top
userPassword: {crypt}*
loginShell: /bin/csh
uidNumber: 0
gidNumber: 0
homeDirectory: /root
gecos: Charlie 

dn: uid=nobody,ou=People,dc=assesc,dc=edu,dc=br
uid: nobody
cn: Unprivileged user
objectClass: account
objectClass: posixAccount
objectClass: top
userPassword: {crypt}*
loginShell: /usr/sbin/nologin
uidNumber: 65534
gidNumber: 65534
homeDirectory: /nonexistent
gecos: Unprivileged user

dn: uid=miguel,ou=People,dc=assesc,dc=edu,dc=br
uid: miguel
cn: Miguel Martins Jr
objectClass: account
objectClass: posixAccount
objectClass: top
userPassword: {crypt}*
loginShell: /bin/csh
uidNumber: 1001
gidNumber: 0
homeDirectory: /home/miguel
gecos: Miguel Martins Jr

dn: uid=sauron,ou=Computers,dc=assesc,dc=edu,dc=br
uid: sauron
cn: Servidor
objectClass: account
objectClass: posixAccount
objectClass: top
userPassword: {crypt}*
loginShell: /usr/bin/nologin
uidNumber: 200
gidNumber: 200
homeDirectory: noexistent
gecos: Servidor

dn: cn=NextFreeUnixId,dc=assesc,dc=edu,dc=br
objectClass: inetOrgPerson
objectClass: sambaUnixIdPool
uidNumber: 1000
gidNumber: 1000
cn: NextFreeUnixId
sn: NextFreeUnixId

dn: zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: assesc.edu.br
zoneName: assesc.edu.br

dn: relativeDomainName=assesc.com.br,zoneName=assesc.com.br
,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: assesc.edu.br
zoneName: assesc.edu.br
dNSTTL: 3600
dNSClass: IN
SOARecord: ns1.assesc.edu.br. hostmaster.assesc.edu.br. 1 10800 3600 604800
86400
NSRecord: ns1.assesc.edu.br.
NSRecord: ns2.assesc.edu.br.
ARecord: 192.168.3.254
MXRecord: 10 mail.assesc.edu.br.

dn: relativeDomainName=@,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: @
zoneName: assesc.edu.br
dNSTTL: 3600
dNSClass: IN
SOARecord: ns1.assesc.edu.br. hostmaster.assesc.edu.br. 1 10800 3600 604800
86400
NSRecord: ns1.assesc.edu.br.
NSRecord: ns2.assesc.edu.br.
ARecord: 192.168.3.254
MXRecord: 10 mail.assesc.edu.br.

dn: relativeDomainName=ns1,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: ns1
zoneName: assesc.edu.br
dNSTTL: 3600
dNSClass: IN
ARecord: 192.168.3.254

dn: relativeDomainName=ns2,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: ns2
zoneName: assesc.edu.br
dNSTTL: 3600
dNSClass: IN
ARecord: 200.135.16.114

dn: relativeDomainName=mail,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: mail
zoneName: assesc.edu.br
dNSTTL: 3600
dNSClass: IN
ARecord: 192.168.3.254

dn: relativeDomainName=sauron,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: sauron
zoneName: assesc.edu.br
dNSTTL: 3600
dNSClass: IN
ARecord: 192.168.3.254


2009/1/22 Flavio Junior bil...@gmail.com

 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 Linhas vazias pro ldap é final de registro...

 Vas ter que aninhar todos teus registros pra evitar linhas vazias no meio
 deles.

 - --

 Flávio do Carmo Júnior aka waKKu

 -BEGIN PGP SIGNATURE-
 Version: GnuPG v1.4.9 (MingW32)
 Comment: http://getfiregpg.org

 iEYEARECAAYFAkl4kPAACgkQgyuXjr6dyksN3wCfVlas83q938uJL22L6KhlpiWv
 yRAAnR4cPI3dF+0WesKe2rMS5/V8HFYy
 =2+QG
 -END PGP SIGNATURE-

 On Thu, Jan 22, 2009 at 1:25 PM, Miguel Martins miguelj...@gmail.com
 wrote:
  Amigos,
 
Estou configurando um LDAP + SAMBA + AD no freebsd 7.0 seguindo o
 how
  to do site só que me apresenta o seguinte erro abaixo. Podem me orientar
 no
  que esto errando ?
 
 
  sauron# sed -i.bak 's/dominio/ASSESC/g' base.ldif
  sauron# ldapmodify -x -D cn=root,dc=assesc,dc=edu,dc=br -W -f
  /root/base.ldif
  Enter LDAP Password:
  modifying entry dc=assesc,dc=edu,dc=br
 
  modifying entry ou=People,dc=assesc,dc=edu,dc=br
 
  modifying entry ou=Group,dc=assesc,dc=edu,dc=br
 
  modifying entry 

Re: [FUG-BR] Problemas com a configuração do LDAP

2009-01-22 Por tôpico Flavio Junior
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

MIguel,

Teu erro esta nas entradas de grupo, essa por exemplo:

dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br
objectClass: posixGroup
objectClass: top
cn: wheel
userPassword: {crypt}*
gidNumber: 0
memberUid: root
memberUid: miguel

Pode ser a falta do schema nis.schema no teu ldap, pode ser por
causa do conteudo do userPassword...

remove a linha userPassword e tenta de novo, mas antes confirma o
nis.schema no slapd.conf

- --

Flávio do Carmo Júnior aka waKKu

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: http://getfiregpg.org

iEYEARECAAYFAkl4lSUACgkQgyuXjr6dyktVyACfSqYdd6qgOoh3U1IwG+w4wwgQ
GZMAnAhsPhMxXoOr91elt0MAyIJmnvw3
=PzJP
-END PGP SIGNATURE-

On Thu, Jan 22, 2009 at 1:37 PM, Miguel Martins miguelj...@gmail.com wrote:
 desculpe ...
 ele esta assim no servidor

 sauron# more base.ldif
 dn: dc=assesc,dc=edu,dc=br
 dc: ASSESC
 objectClass: top
 objectClass: domain

 dn: ou=People,dc=assesc,dc=edu,dc=br
 ou: People
 objectClass: top
 objectClass: organizationalUnit

 dn: ou=Group,dc=assesc,dc=edu,dc=br
 ou: Group
 objectClass: top
 objectClass: organizationalUnit

 dn: ou=Computers,dc=assesc,dc=edu,dc=br
 ou: Computers
 objectClass: top
 objectClass: organizationalUnit

 dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br
 objectClass: posixGroup
 objectClass: top
 cn: wheel
 userPassword: {crypt}*
 gidNumber: 0
 memberUid: root
 memberUid: miguel

 dn: cn=nogroup,ou=Group,dc=assesc,dc=edu,dc=br
 objectClass: posixGroup
 objectClass: top
 cn: nogroup
 userPassword: {crypt}*
 gidNumber: 65533

 dn: cn=nobody,ou=Group,dc=assesc,dc=edu,dc=br
 objectClass: posixGroup
 objectClass: top
 cn: nobody
 userPassword: {crypt}*
 gidNumber: 65534

 dn: uid=root,ou=People,dc=assesc,dc=edu,dc=br
 uid: root
 cn: Charlie 
 objectClass: account
 objectClass: posixAccount
 objectClass: top
 userPassword: {crypt}*
 loginShell: /bin/csh
 uidNumber: 0
 gidNumber: 0
 homeDirectory: /root
 gecos: Charlie 

 dn: uid=nobody,ou=People,dc=assesc,dc=edu,dc=br
 uid: nobody
 cn: Unprivileged user
 objectClass: account
 objectClass: posixAccount
 objectClass: top
 userPassword: {crypt}*
 loginShell: /usr/sbin/nologin
 uidNumber: 65534
 gidNumber: 65534
 homeDirectory: /nonexistent
 gecos: Unprivileged user

 dn: uid=miguel,ou=People,dc=assesc,dc=edu,dc=br
 uid: miguel
 cn: Miguel Martins Jr
 objectClass: account
 objectClass: posixAccount
 objectClass: top
 userPassword: {crypt}*
 loginShell: /bin/csh
 uidNumber: 1001
 gidNumber: 0
 homeDirectory: /home/miguel
 gecos: Miguel Martins Jr

 dn: uid=sauron,ou=Computers,dc=assesc,dc=edu,dc=br
 uid: sauron
 cn: Servidor
 objectClass: account
 objectClass: posixAccount
 objectClass: top
 userPassword: {crypt}*
 loginShell: /usr/bin/nologin
 uidNumber: 200
 gidNumber: 200
 homeDirectory: noexistent
 gecos: Servidor

 dn: cn=NextFreeUnixId,dc=assesc,dc=edu,dc=br
 objectClass: inetOrgPerson
 objectClass: sambaUnixIdPool
 uidNumber: 1000
 gidNumber: 1000
 cn: NextFreeUnixId
 sn: NextFreeUnixId

 dn: zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: assesc.edu.br
 zoneName: assesc.edu.br

 dn: relativeDomainName=assesc.com.br,zoneName=assesc.com.br
 ,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: assesc.edu.br
 zoneName: assesc.edu.br
 dNSTTL: 3600
 dNSClass: IN
 SOARecord: ns1.assesc.edu.br. hostmaster.assesc.edu.br. 1 10800 3600 604800
 86400
 NSRecord: ns1.assesc.edu.br.
 NSRecord: ns2.assesc.edu.br.
 ARecord: 192.168.3.254
 MXRecord: 10 mail.assesc.edu.br.

 dn: relativeDomainName=@,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: @
 zoneName: assesc.edu.br
 dNSTTL: 3600
 dNSClass: IN
 SOARecord: ns1.assesc.edu.br. hostmaster.assesc.edu.br. 1 10800 3600 604800
 86400
 NSRecord: ns1.assesc.edu.br.
 NSRecord: ns2.assesc.edu.br.
 ARecord: 192.168.3.254
 MXRecord: 10 mail.assesc.edu.br.

 dn: relativeDomainName=ns1,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: ns1
 zoneName: assesc.edu.br
 dNSTTL: 3600
 dNSClass: IN
 ARecord: 192.168.3.254

 dn: relativeDomainName=ns2,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: ns2
 zoneName: assesc.edu.br
 dNSTTL: 3600
 dNSClass: IN
 ARecord: 200.135.16.114

 dn: relativeDomainName=mail,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: mail
 zoneName: assesc.edu.br
 dNSTTL: 3600
 dNSClass: IN
 ARecord: 192.168.3.254

 dn: relativeDomainName=sauron,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: sauron
 zoneName: assesc.edu.br
 dNSTTL: 3600
 dNSClass: IN
 ARecord: 192.168.3.254


 2009/1/22 Flavio Junior bil...@gmail.com

 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 Linhas vazias pro ldap é final de 

Re: [FUG-BR] Problemas com a configuração do LDAP

2009-01-22 Por tôpico Miguel Martins
Verifiquei o NIS.SCHEMA esta lah retirei as linhas userPassword: {crypt}*
e continua...


sauron# cat /usr/local/etc/openldap/slapd.conf
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/nis.schema
include /usr/local/etc/openldap/schema/samba.schema
include /usr/local/etc/openldap/schema/bind.schema

referralldap://localhost

# Load dynamic backend modules:
modulepath  /usr/local/libexec/openldap
moduleload  back_bdb
moduleload  back_ldap

pidfile /var/run/openldap/slapd.pid
argsfile/var/run/openldap/slapd.args

# Banco de dados LDAP
databasebdb
suffix  dc=assesc,dc=edu,dc=br

# Definimos a conta administradora como root
rootdn  cn=root,dc=assesc,dc=edu,dc=br

# A senha deve ser gerada com o slappaswd.

##Ex: # slappasswd
## New password:
## Re-enter new password:
## {SSHA}e7C9/YlcGzCsk7gCkzVzhYFNB/4DzcGB

rootpw  {SSHA}kGX3aMbe9pQHzoGeYvOe0j4MNAln6OYQ

# Caminho para a base de dados LDAP
directory   /var/db/openldap-data

password-hash  {CRYPT}
password-crypt-salt-format $1$.8s

#indices para otimizar acesso
index objectClass,uidNumber,gidNumber eq
index cn,sn,uid,displayName pres,sub,eq
index memberUid,mail,givenname eq
index sambaSID,sambaPrimaryGroupSID,sambaDomainName eq
index default sub

# ACLs
access to attrs=userPassword,sambaLMPassword,sambaNTPassword
by self write
by anonymous auth
by * none

access to *
by * read

sauron#
sauron# ls /usr/local/etc/openldap/schema/
README  cosine.schema
java.schema.default openldap.schema.default
bind.schema cosine.schema.default
misc.schema ppolicy.schema
corba.schemadyngroup.schema
misc.schema.default ppolicy.schema.default
corba.schema.defaultdyngroup.schema.default
nis.schema  samba.schema
core.ldif   inetorgperson.schema
nis.schema.default
core.schema inetorgperson.schema.default
openldap.ldif
core.schema.default java.schema
openldap.schema
sauron#
sauron# more base.ldif
dn: dc=assesc,dc=edu,dc=br
dc: ASSESC
objectClass: top
objectClass: domain

dn: ou=People,dc=assesc,dc=edu,dc=br
ou: People
objectClass: top
objectClass: organizationalUnit

dn: ou=Group,dc=assesc,dc=edu,dc=br
ou: Group
objectClass: top
objectClass: organizationalUnit

dn: ou=Computers,dc=assesc,dc=edu,dc=br
ou: Computers
objectClass: top
objectClass: organizationalUnit

dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br
objectClass: posixGroup
objectClass: top
cn: wheel
gidNumber: 0
memberUid: root
memberUid: miguel

dn: cn=nogroup,ou=Group,dc=assesc,dc=edu,dc=br
objectClass: posixGroup
objectClass: top
cn: nogroup
gidNumber: 65533

dn: cn=nobody,ou=Group,dc=assesc,dc=edu,dc=br
objectClass: posixGroup
objectClass: top
cn: nobody
gidNumber: 65534

dn: uid=root,ou=People,dc=assesc,dc=edu,dc=br
uid: root
cn: Charlie 
objectClass: account
objectClass: posixAccount
objectClass: top
loginShell: /bin/csh
uidNumber: 0
gidNumber: 0
homeDirectory: /root
gecos: Charlie 

dn: uid=nobody,ou=People,dc=assesc,dc=edu,dc=br
uid: nobody
cn: Unprivileged user
objectClass: account
objectClass: posixAccount
objectClass: top
loginShell: /usr/sbin/nologin
uidNumber: 65534
gidNumber: 65534
homeDirectory: /nonexistent
gecos: Unprivileged user

dn: uid=miguel,ou=People,dc=assesc,dc=edu,dc=br
uid: miguel
cn: Miguel Martins Jr
objectClass: account
objectClass: posixAccount
objectClass: top
loginShell: /bin/csh
uidNumber: 1001
gidNumber: 0
homeDirectory: /home/miguel
gecos: Miguel Martins Jr

dn: uid=sauron,ou=Computers,dc=assesc,dc=edu,dc=br
uid: sauron
cn: Servidor
objectClass: account
objectClass: posixAccount
objectClass: top
loginShell: /usr/bin/nologin
uidNumber: 200
gidNumber: 200
homeDirectory: noexistent
gecos: Servidor

dn: cn=NextFreeUnixId,dc=assesc,dc=edu,dc=br
objectClass: inetOrgPerson
objectClass: sambaUnixIdPool
uidNumber: 1000
gidNumber: 1000
cn: NextFreeUnixId
sn: NextFreeUnixId

dn: zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: assesc.edu.br
zoneName: assesc.edu.br

dn: relativeDomainName=assesc.com.br,zoneName=assesc.com.br
,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: assesc.edu.br
zoneName: assesc.edu.br
dNSTTL: 3600
dNSClass: IN
SOARecord: ns1.assesc.edu.br. hostmaster.assesc.edu.br. 1 10800 3600 604800
86400
NSRecord: ns1.assesc.edu.br.
NSRecord: ns2.assesc.edu.br.
ARecord: 192.168.3.254
MXRecord: 10 mail.assesc.edu.br.

dn: relativeDomainName=@,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
objectClass: top
objectClass: dNSZone
relativeDomainName: @
zoneName: assesc.edu.br
dNSTTL: 3600
dNSClass: IN
SOARecord: ns1.assesc.edu.br. hostmaster.assesc.edu.br. 1 10800 3600 

Re: [FUG-BR] Problemas com a configuração do LDAP

2009-01-22 Por tôpico Flavio Junior
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Miguel,

Continua o MESMO ERRO na MESMA LINHA ?

Manda no e-mail sempre o comando e o erro, pra gente ter uma ideia do
que ta fazendo.

- --

Flávio do Carmo Júnior aka waKKu

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: http://getfiregpg.org

iEYEARECAAYFAkl4nwkACgkQgyuXjr6dykt9NACgk2XzRC7UQ82E9XCtPFw1KQGf
V+kAn16gze1NMd+UkpUHJTI/ClCKLDUI
=vm02
-END PGP SIGNATURE-

On Thu, Jan 22, 2009 at 2:21 PM, Miguel Martins miguelj...@gmail.com wrote:
 Verifiquei o NIS.SCHEMA esta lah retirei as linhas userPassword: {crypt}*
 e continua...


 sauron# cat /usr/local/etc/openldap/slapd.conf
 include /usr/local/etc/openldap/schema/core.schema
 include /usr/local/etc/openldap/schema/cosine.schema
 include /usr/local/etc/openldap/schema/inetorgperson.schema
 include /usr/local/etc/openldap/schema/nis.schema
 include /usr/local/etc/openldap/schema/samba.schema
 include /usr/local/etc/openldap/schema/bind.schema

 referralldap://localhost

 # Load dynamic backend modules:
 modulepath  /usr/local/libexec/openldap
 moduleload  back_bdb
 moduleload  back_ldap

 pidfile /var/run/openldap/slapd.pid
 argsfile/var/run/openldap/slapd.args

 # Banco de dados LDAP
 databasebdb
 suffix  dc=assesc,dc=edu,dc=br

 # Definimos a conta administradora como root
 rootdn  cn=root,dc=assesc,dc=edu,dc=br

 # A senha deve ser gerada com o slappaswd.

 ##Ex: # slappasswd
 ## New password:
 ## Re-enter new password:
 ## {SSHA}e7C9/YlcGzCsk7gCkzVzhYFNB/4DzcGB

 rootpw  {SSHA}kGX3aMbe9pQHzoGeYvOe0j4MNAln6OYQ

 # Caminho para a base de dados LDAP
 directory   /var/db/openldap-data

 password-hash  {CRYPT}
 password-crypt-salt-format $1$.8s

 #indices para otimizar acesso
 index objectClass,uidNumber,gidNumber eq
 index cn,sn,uid,displayName pres,sub,eq
 index memberUid,mail,givenname eq
 index sambaSID,sambaPrimaryGroupSID,sambaDomainName eq
 index default sub

 # ACLs
 access to attrs=userPassword,sambaLMPassword,sambaNTPassword
by self write
by anonymous auth
by * none

 access to *
by * read

 sauron#
 sauron# ls /usr/local/etc/openldap/schema/
 README  cosine.schema
 java.schema.default openldap.schema.default
 bind.schema cosine.schema.default
 misc.schema ppolicy.schema
 corba.schemadyngroup.schema
 misc.schema.default ppolicy.schema.default
 corba.schema.defaultdyngroup.schema.default
 nis.schema  samba.schema
 core.ldif   inetorgperson.schema
 nis.schema.default
 core.schema inetorgperson.schema.default
 openldap.ldif
 core.schema.default java.schema
 openldap.schema
 sauron#
 sauron# more base.ldif
 dn: dc=assesc,dc=edu,dc=br
 dc: ASSESC
 objectClass: top
 objectClass: domain

 dn: ou=People,dc=assesc,dc=edu,dc=br
 ou: People
 objectClass: top
 objectClass: organizationalUnit

 dn: ou=Group,dc=assesc,dc=edu,dc=br
 ou: Group
 objectClass: top
 objectClass: organizationalUnit

 dn: ou=Computers,dc=assesc,dc=edu,dc=br
 ou: Computers
 objectClass: top
 objectClass: organizationalUnit

 dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br
 objectClass: posixGroup
 objectClass: top
 cn: wheel
 gidNumber: 0
 memberUid: root
 memberUid: miguel

 dn: cn=nogroup,ou=Group,dc=assesc,dc=edu,dc=br
 objectClass: posixGroup
 objectClass: top
 cn: nogroup
 gidNumber: 65533

 dn: cn=nobody,ou=Group,dc=assesc,dc=edu,dc=br
 objectClass: posixGroup
 objectClass: top
 cn: nobody
 gidNumber: 65534

 dn: uid=root,ou=People,dc=assesc,dc=edu,dc=br
 uid: root
 cn: Charlie 
 objectClass: account
 objectClass: posixAccount
 objectClass: top
 loginShell: /bin/csh
 uidNumber: 0
 gidNumber: 0
 homeDirectory: /root
 gecos: Charlie 

 dn: uid=nobody,ou=People,dc=assesc,dc=edu,dc=br
 uid: nobody
 cn: Unprivileged user
 objectClass: account
 objectClass: posixAccount
 objectClass: top
 loginShell: /usr/sbin/nologin
 uidNumber: 65534
 gidNumber: 65534
 homeDirectory: /nonexistent
 gecos: Unprivileged user

 dn: uid=miguel,ou=People,dc=assesc,dc=edu,dc=br
 uid: miguel
 cn: Miguel Martins Jr
 objectClass: account
 objectClass: posixAccount
 objectClass: top
 loginShell: /bin/csh
 uidNumber: 1001
 gidNumber: 0
 homeDirectory: /home/miguel
 gecos: Miguel Martins Jr

 dn: uid=sauron,ou=Computers,dc=assesc,dc=edu,dc=br
 uid: sauron
 cn: Servidor
 objectClass: account
 objectClass: posixAccount
 objectClass: top
 loginShell: /usr/bin/nologin
 uidNumber: 200
 gidNumber: 200
 homeDirectory: noexistent
 gecos: Servidor

 dn: cn=NextFreeUnixId,dc=assesc,dc=edu,dc=br
 objectClass: inetOrgPerson
 objectClass: sambaUnixIdPool
 uidNumber: 1000
 gidNumber: 1000
 cn: NextFreeUnixId
 sn: NextFreeUnixId

 dn: zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
 objectClass: top
 objectClass: dNSZone
 relativeDomainName: assesc.edu.br
 

Re: [FUG-BR] Problemas com a configuração do LDAP

2009-01-22 Por tôpico Miguel Martins
sauron# ldapadd -x -D cn=root,dc=assesc,dc=edu,dc=br -W -f /root/base.ldif
Enter LDAP Password:
adding new entry ou=People,dc=assesc,dc=edu,dc=br

adding new entry ou=Group,dc=assesc,dc=edu,dc=br

ldapadd: attributeDescription dn: (possible missing newline after line 4
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 11
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 16
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 21
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 32
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 43
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 54
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 65
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 72
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 77
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 89
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 101
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
ldapadd: attributeDescription dn: (possible missing newline after line 109
of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
adding new entry ou=Computers,dc=assesc,dc=edu,dc=br
ldapadd: Invalid syntax (21)
additional info: objectClass: value #1 invalid per syntax

sauron#


2009/1/22 Flavio Junior bil...@gmail.com

 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 Miguel,

 Continua o MESMO ERRO na MESMA LINHA ?

 Manda no e-mail sempre o comando e o erro, pra gente ter uma ideia do
 que ta fazendo.

 - --

 Flávio do Carmo Júnior aka waKKu

 -BEGIN PGP SIGNATURE-
 Version: GnuPG v1.4.9 (MingW32)
 Comment: http://getfiregpg.org

 iEYEARECAAYFAkl4nwkACgkQgyuXjr6dykt9NACgk2XzRC7UQ82E9XCtPFw1KQGf
 V+kAn16gze1NMd+UkpUHJTI/ClCKLDUI
 =vm02
 -END PGP SIGNATURE-

 On Thu, Jan 22, 2009 at 2:21 PM, Miguel Martins miguelj...@gmail.com
 wrote:
  Verifiquei o NIS.SCHEMA esta lah retirei as linhas userPassword:
 {crypt}*
  e continua...
 
 
  sauron# cat /usr/local/etc/openldap/slapd.conf
  include /usr/local/etc/openldap/schema/core.schema
  include /usr/local/etc/openldap/schema/cosine.schema
  include /usr/local/etc/openldap/schema/inetorgperson.schema
  include /usr/local/etc/openldap/schema/nis.schema
  include /usr/local/etc/openldap/schema/samba.schema
  include /usr/local/etc/openldap/schema/bind.schema
 
  referralldap://localhost
 
  # Load dynamic backend modules:
  modulepath  /usr/local/libexec/openldap
  moduleload  back_bdb
  moduleload  back_ldap
 
  pidfile /var/run/openldap/slapd.pid
  argsfile/var/run/openldap/slapd.args
 
  # Banco de dados LDAP
  databasebdb
  suffix  dc=assesc,dc=edu,dc=br
 
  # Definimos a conta administradora como root
  rootdn  cn=root,dc=assesc,dc=edu,dc=br
 
  # A senha deve ser gerada com o slappaswd.
 
  ##Ex: # slappasswd
  ## New password:
  ## Re-enter new password:
  ## {SSHA}e7C9/YlcGzCsk7gCkzVzhYFNB/4DzcGB
 
  rootpw  {SSHA}kGX3aMbe9pQHzoGeYvOe0j4MNAln6OYQ
 
  # Caminho para a base de dados LDAP
  directory   /var/db/openldap-data
 
  password-hash  {CRYPT}
  password-crypt-salt-format $1$.8s
 
  #indices para otimizar acesso
  index objectClass,uidNumber,gidNumber eq
  index cn,sn,uid,displayName pres,sub,eq
  index memberUid,mail,givenname eq
  index sambaSID,sambaPrimaryGroupSID,sambaDomainName eq
  index default sub
 
  # ACLs
  access to attrs=userPassword,sambaLMPassword,sambaNTPassword
 by self write
 by anonymous auth
 by * none
 
  access to *
 by * read
 
  sauron#
  sauron# ls /usr/local/etc/openldap/schema/
  README  cosine.schema
  java.schema.default openldap.schema.default
  bind.schema cosine.schema.default
  misc.schema ppolicy.schema
  corba.schemadyngroup.schema
  misc.schema.default ppolicy.schema.default
  corba.schema.defaultdyngroup.schema.default
  nis.schema  samba.schema
  core.ldif   inetorgperson.schema
  nis.schema.default
  core.schema inetorgperson.schema.default
  openldap.ldif
  core.schema.default java.schema
  openldap.schema
  sauron#
  sauron# more base.ldif
  dn: dc=assesc,dc=edu,dc=br
  dc: ASSESC
  

Re: [FUG-BR] Problemas com a configuração do LDAP

2009-01-22 Por tôpico Miguel Martins
Descobri

 São os espaços após as instruções.

2009/1/22 Miguel Martins miguelj...@gmail.com

 sauron# ldapadd -x -D cn=root,dc=assesc,dc=edu,dc=br -W -f /root/base.ldif
 Enter LDAP Password:
 adding new entry ou=People,dc=assesc,dc=edu,dc=br

 adding new entry ou=Group,dc=assesc,dc=edu,dc=br

 ldapadd: attributeDescription dn: (possible missing newline after line 4
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 11
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 16
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 21
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 32
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 43
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 54
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 65
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 72
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 77
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line 89
 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line
 101 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 ldapadd: attributeDescription dn: (possible missing newline after line
 109 of entry ou=Computers,dc=assesc,dc=edu,dc=br?)
 adding new entry ou=Computers,dc=assesc,dc=edu,dc=br
 ldapadd: Invalid syntax (21)
 additional info: objectClass: value #1 invalid per syntax

 sauron#



 2009/1/22 Flavio Junior bil...@gmail.com

 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 Miguel,

 Continua o MESMO ERRO na MESMA LINHA ?

 Manda no e-mail sempre o comando e o erro, pra gente ter uma ideia do
 que ta fazendo.

 - --

 Flávio do Carmo Júnior aka waKKu

 -BEGIN PGP SIGNATURE-
 Version: GnuPG v1.4.9 (MingW32)
 Comment: http://getfiregpg.org

 iEYEARECAAYFAkl4nwkACgkQgyuXjr6dykt9NACgk2XzRC7UQ82E9XCtPFw1KQGf
 V+kAn16gze1NMd+UkpUHJTI/ClCKLDUI
 =vm02
 -END PGP SIGNATURE-

 On Thu, Jan 22, 2009 at 2:21 PM, Miguel Martins miguelj...@gmail.com
 wrote:
  Verifiquei o NIS.SCHEMA esta lah retirei as linhas userPassword:
 {crypt}*
  e continua...
 
 
  sauron# cat /usr/local/etc/openldap/slapd.conf
  include /usr/local/etc/openldap/schema/core.schema
  include /usr/local/etc/openldap/schema/cosine.schema
  include /usr/local/etc/openldap/schema/inetorgperson.schema
  include /usr/local/etc/openldap/schema/nis.schema
  include /usr/local/etc/openldap/schema/samba.schema
  include /usr/local/etc/openldap/schema/bind.schema
 
  referralldap://localhost
 
  # Load dynamic backend modules:
  modulepath  /usr/local/libexec/openldap
  moduleload  back_bdb
  moduleload  back_ldap
 
  pidfile /var/run/openldap/slapd.pid
  argsfile/var/run/openldap/slapd.args
 
  # Banco de dados LDAP
  databasebdb
  suffix  dc=assesc,dc=edu,dc=br
 
  # Definimos a conta administradora como root
  rootdn  cn=root,dc=assesc,dc=edu,dc=br
 
  # A senha deve ser gerada com o slappaswd.
 
  ##Ex: # slappasswd
  ## New password:
  ## Re-enter new password:
  ## {SSHA}e7C9/YlcGzCsk7gCkzVzhYFNB/4DzcGB
 
  rootpw  {SSHA}kGX3aMbe9pQHzoGeYvOe0j4MNAln6OYQ
 
  # Caminho para a base de dados LDAP
  directory   /var/db/openldap-data
 
  password-hash  {CRYPT}
  password-crypt-salt-format $1$.8s
 
  #indices para otimizar acesso
  index objectClass,uidNumber,gidNumber eq
  index cn,sn,uid,displayName pres,sub,eq
  index memberUid,mail,givenname eq
  index sambaSID,sambaPrimaryGroupSID,sambaDomainName eq
  index default sub
 
  # ACLs
  access to attrs=userPassword,sambaLMPassword,sambaNTPassword
 by self write
 by anonymous auth
 by * none
 
  access to *
 by * read
 
  sauron#
  sauron# ls /usr/local/etc/openldap/schema/
  README  cosine.schema
  java.schema.default openldap.schema.default
  bind.schema cosine.schema.default
  misc.schema ppolicy.schema
  corba.schemadyngroup.schema
  misc.schema.default ppolicy.schema.default
  corba.schema.defaultdyngroup.schema.default
  nis.schema  samba.schema
  core.ldif   inetorgperson.schema
  nis.schema.default
  core.schema inetorgperson.schema.default
  openldap.ldif