[Freeipa-users] Re: newbie question, LDAP
Günther J. Niederwimmer via FreeIPA-users wrote: > Hello Rob, > Thank you for your answer, > > I wanted to ask first before I mess up my IPA installation, I only found > phpLDAPadmin on EPEL today, and I hope to get more insight into the available > attributes and what is stored where. > > If you don't know then who ;-) Just viewing entries shouldn't cause any problems. I played with Apache Studio a while long ago, otherwise I stick with ldapsearch. > Then I'll set out to install the part and hopefully also to configure it. > > Should you log in as an admin or create a new account? It's up to you and the choice will determine how much you can see. If you bind as Directory Manager you can see everything. As admin most things. As a normal user not a whole lot. rob > > Thanks again for your answer, > > Am Freitag, 23. September 2022, 15:16:44 CEST schrieb Rob Crittenden via > FreeIPA-users: >> Günther J. Niederwimmer via FreeIPA-users wrote: >> >>> Hello List, >>> >>> is it actually possible to display the LDAP database with phpLDAPadmin >>> (from > EPEL) or does this destroy the FreeIPA installation? >>> >>> Or can't phpLDAPadmin handle the 389 Directory Server? >> >> >> I'm not aware of any problem using phpLDAPadmin to read 389-ds data. >> >> Is it not working for you? >> >> rob > > ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
[Freeipa-users] Re: newbie question, LDAP
Hello Rob, Thank you for your answer, I wanted to ask first before I mess up my IPA installation, I only found phpLDAPadmin on EPEL today, and I hope to get more insight into the available attributes and what is stored where. If you don't know then who ;-) Then I'll set out to install the part and hopefully also to configure it. Should you log in as an admin or create a new account? Thanks again for your answer, Am Freitag, 23. September 2022, 15:16:44 CEST schrieb Rob Crittenden via FreeIPA-users: > Günther J. Niederwimmer via FreeIPA-users wrote: > > > Hello List, > > > > is it actually possible to display the LDAP database with phpLDAPadmin > > (from EPEL) or does this destroy the FreeIPA installation? > > > > Or can't phpLDAPadmin handle the 389 Directory Server? > > > I'm not aware of any problem using phpLDAPadmin to read 389-ds data. > > Is it not working for you? > > rob -- mit freundlichen Grüßen / best Regards, Günther J. Niederwimmer ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
[Freeipa-users] Re: newbie question, LDAP
Günther J. Niederwimmer via FreeIPA-users wrote: > Hello List, > > is it actually possible to display the LDAP database with phpLDAPadmin (from > EPEL) or does this destroy the FreeIPA installation? > > Or can't phpLDAPadmin handle the 389 Directory Server? I'm not aware of any problem using phpLDAPadmin to read 389-ds data. Is it not working for you? rob ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
[Freeipa-users] Re: newbie question
On 10/30/2017 03:55 AM, Sergei Gerasenko via FreeIPA-users wrote: Hi, When searching for RUVs, agreements, etc, the following ldapsearch command can be used: ldapsearch -xLLL -h HOST -D "cn=directory manager" -W -b cn=config cn=replica nsds50ruv -o ldif-wrap=no That seems to work. The reported dn is "cn=replica,cn=dc\3DMY_DOMAIN\2Cdc\3DCOM,cn=mapping tree,cn=config However, when I connect to the ldap server using a graphical LDAP browser (JXplorer), I can't find any of that information. I.e., I can't find the cn=replica, cn=mapping tree or cn=config. How can see that information using a graphical browser? Thanks! Sergei ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Hi, usually graphical browsers are able to automatically retrieve the list of naming contexts (also called base DN or suffixes) provided by a LDAP server and display them. The naming contexts are obtained by performing a ldapsearch on the root DSE (the empty suffix "") asking for the attribute namingcontexts. FreeIPA publishes only a subset of its available naming contexts because the other ones are storing internal configuration, for instance: $ ldapsearch -h localhost -p 389 -x -b "" -s base -LLL namingcontexts dn: namingcontexts: cn=changelog namingcontexts: dc=ipadomain,dc=com namingcontexts: o=ipaca But most graphical browsers can be configured with a naming context to look for, for instance by specifying a base DN in the connect dialog. HTH, Flo ___ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org