2000-07-04 -+- Robert Fargher -+- fargher@aebc.com -+- Thank you very much for this article, it was a stimulating
read indeed. I am going to now go and learn more about
LDAP. :-)
You mention using LDAP with Postfix and POP/IMAP to provide
email service with out providing a shell account. I am *very*
interested in learning more about how you did this. Would you
consider writing another article, explaining the HOWTO for doing
this? Or do you know of an already existing exegesis?
Cheers,
Rob
2000-07-04 -+- Atif Ghaffar -+- atif@developer.ch -+- LDAP/Postfix/IMAP/IMP.
Robert, I am using all these with a cool web mail software
written in php called IMP.
IMP is available at http://www.horde.org/imp
and a very good white paper about Scalable Mailserver is at
http://www.horde.org/papers/Scalable_webmail_HOWTO.php
Use that as your exploring point. I will write a paper
with the current information on setting up Massive ISPs without
actually creating even one system user account sometime by the
end of this month, when my program "ISPMan" is finished.
2000-07-05 -+- Wilane Ousmane -+- wilane@usa.net -+- I picked the url from php mailing list and was curious about an artcile writen on LDAP by someone who was searching for an LDAP guru few days ago! Great, it's realy useful even for someone who is familiar with LDAP.
Keep up the good work!
2000-07-08 -+- Atif Ghaffar -+- atif@developer.ch -+- Errata:
I was pointed out by Vincent Brousseau that
>: LDAP is NOT a database, it's a standard protocol to access a directory
>: (like it's name is saying).
>:
True. LDAP is a protocol to access directory. Directory
is infact the special kind of database.
Thanks Vincent for the correction.
2000-07-13 -+- Charles Sprickma -+- nospam@fasttrackmonkey.com -+- This is really the best article I've seen while searching for
LDAP info. The idea seems very simple, but so much crap I've
seen so far just starts off assuming you know what LDAP is, how
it's structured (and why) and starts yammering about various
servers and hinting at vague applications.
Really, this is perfect, keep up the good work. And if someone
finds a pam ldap module for FreeBSD, pass it on...
thanks
2000-07-17 -+- Tom Walsh -+- spam@cyberiansoftware.com -+- Great article! I have been meaning to tinker with LDAP, but was a bit daunted by it.
As a result of your article, I will give it a try.
Thanks!
2000-07-18 -+- Atif Ghaffar -+- atif@developer.ch -+- LDAP localhost fix.
-------------------
Mike Allerhand send the following comments to me to add to the article.
Thanks Mike for adding these information.
Atif,
You might like to add something to your good
LinuxFocus article about the following common
problem.
Suppose you are testing a new installation of slapd on the
localhost, and whenever you try to run a utility
(like ldapadd) you get:
"ldap_bind: Can't contact LDAP server"
The reason is that slapd is (usually) compiled with
tcp wrapper. If access is not allowed, then slapd
cannot listen to its port. Some distros do not allow
access by default, for security. (Certainly true of
RedHat). So what you have to do is add a line
to /etc/hosts.allow
ALL: 127.0.0.1
Then restart and all is well.
Mike
2000-07-18 -+- Murali Jetti -+- pchoudary@hotmail.com -+- Excellent Article. i am very eager to read your article about setting up massive isp's.
2000-07-18 -+- Will -+- -+- Be VERY CAREFUL ABOUT SECURTY! Don't let the world
browse your LDAP directory. Limit what fields can be browsed.
The password entry is a bad thing to let people see,
even in crypt form. Read the access control stuff.
It is confusing, but needed before you put you server into
the real world.
2000-07-18 -+- Wendell -+- ward@southern.edu -+- Hi,
I just want to say THANKS.
I was working on understanding LDAP and was
getting nowhere with the man pages. I found
this page and things fell together for me.
Thanks again.
Wendell
2000-08-09 -+- Linda -+- lspringael@yahoo.co.uk -+- Hello, thanks for your clarifying article.
I have a question. I am looking for an LDAP web client which works with a Linux server. Do you have any ideas on that?
Thanks in advance.
Linda
2000-08-10 -+- Robert Watt -+- rob@alphanumerica.com -+- We are trying to setup an LDAP directory to replace NIS on our internal network. We are using linux and freebsd, with PAM and PADL's pam-ldap and nss modules.
We've followed the LDAP-howto for setting up the pam module, but it doesn't seem to be working correctly. When I login ldap does take over, but I can't get it to authenticate, all I get on the client is 'login incorrect' and slapd doesn't report and errors.
I've tried both plaintext and crypt'ed passwords, but neither seem to work.
Haven't been able to find many resources on the web that address authenticating through ldap. Any suggestions?
Also, we would like our Windows boxes to use the directory as well. I've been assuming that I'll need to authenticate through a samba domain controller, but was wondering if there's another way.
Thanks.
Rob
2000-08-18 -+- Michael Utech -+- michael@itd.utech.de -+- Great work, excatly what i wanted to
know at first glance, good list of links
to go further. Thank you Atif!
2000-08-24 -+- Thorsten Gutsche -+- thorsten.gutsche@gmx.de -+- Thank you very much !!
Many people tried me to explain the logic of ldap and slapd.
I considered to change my job because of the awful documentation of the basics of LDAP i found till now.
From now i will to turn over to a new leaf...
Your hint about the conjunction of Postfix/Cyrus/LDAP with several domains is accurate that thing i`m trying to realize.
I hope you `ll not be angry about the plenty of questions i maybe have to ask you acroos your e-mail-account??? ;->
Thank you
Thorsten
2000-09-03 -+- Tridib -+- tridib_saha@hotmail.com -+- Hi Atiff
Your article is really stimulating. I have learnt a lot
about LDAP from your article.
Thanks
Tridib
2000-09-04 -+- Tridib -+- tridib_saha@hotmail.com -+- Hi Atif
I have one doubt. I would request you to help me.
My problem is as follows:
1. I am able to store the user informations as per your guidelines(article) into ldbm .
2. Along with the user informations, how can I store content of
a file (or file ?) ? (This file will usually contain some textual
data).
Thanks
With regards
Tridib
2000-09-06 -+- Alois Vitásek -+- vitasek@meritum.cz -+- Thanks, it helps me very much.
2000-09-30 -+- Vivek nema -+- nema@softlink.ch -+- Hi!
Your article is really stimulating. I still not able to come up with point that from where i should start.
I am software enginner works on Telecommunication product.
Can u tell me from where i should start thinking about LDAP!
Thanx- Vivek
2000-11-24 -+- Nasir Ahmed -+- nasira@aptech.ac.in -+- Dear Mr. Atif,
that was a great article on LDAP indeed. Thanks a Ton!!
I have recently installed Open LDAP on Linux. I have entered data viz.
dn,sn,fn,cn,uid,mail, office tel, res tel, mobile number, etc. for about
1000 users.
Now, please help me to ensure that this data which has been entered into
the ldap server is to be made available and accessible only by these
valid users only, wherein they can use Netscape or any other addressbook
and retrieve relevant details from the Ldap server. As my users are
geographically scattered accross the globe, I have no option but to put
the server on Internet.
Please guide me so that I can put the server on Internet w/o giving
access to unauthorised users.
A prompt response in this regard will be highly appreciated.
Thanking you in Anticipation,
Regards,
Nasir
2000-12-01 -+- sameer patil -+- sameerp76@hotmail.com -+- The article is really good.
I am getting an error while adding an entry(linux shell prompt ldapadd command).
It says
adding new entry
ldap_add No such object
Thanx in advance
2000-12-17 -+- Martin Wagner -+- mw.zuhause@t-online.de -+- Very good LDAP-Primer. Helped a lot to understand what LDAP can do & what it Can't.
2001-01-01 -+- Felicia Artis -+- fartis@atl.mediaone.net -+- Thanks for the information. This answered alot of my questions about
ldap and some of its uses. Great information.
2001-02-07 -+- lorenzo -+- lorenzo.rondelli@gidi.it -+- this is a very good help about LDAP
thank you very mouch
now I know more things about this protocol
bye
2001-02-17 -+- Lars -+- lassewidda@hotmail.com -+- Thankyou for this article! It got me going...
2001-03-11 -+- Christian Zuckschwerdt -+- zany-lf@triq.net -+- I'd like to point you to GQ http://biot.com/gq/
(Freshmeat: http://freshmeat.net/projects/gq/ ). It's a nice LDAP browser/editor using GTK. The schema support is also worth a try.
2001-03-15 -+- Brian -+- -+- Thanks a millon, Atif. I can only echo roughly what Charles Sprickma
said above: you search for info on LDAP and come across loads of stuff
that assumes that you are familiar with the fundamental concepts and it
dives straight in to talking about it at a protocol level. This document
helped provide me with the basics.
The reason I came across LDAP is because I wanted to use it to authenticate
mail users in virtual domains on my qmail server. I was fasciniated to
see that you use it for a similar purpose, and then I learned that I can
also use it for secure websites logins for those same virtual domains. When
I read more, I began to recognise that our IT department must be using LDAP
to provide some of the new srvices that they are offering across a whole
range of applications - fascinating. Thanks for your expertly written
introduction to the topic. Keep up the good work. Regards,
Brian
2001-03-15 -+- humayun -+- fifooo@yahoo.com -+- this is a great article on ldap ...
but during the adding into ldap by "ldapadd" i am having an error " there is no such object "
i want some detail answer to my problem
plese help me out
2001-04-10 -+- keda joshi -+- kedar_jo@yahoo.com -+- i must say this a very well organised article .. and it is perfect starting point for anyone to explore ldap .
2001-04-17 -+- Mike Harris -+- mharris@micromuse.com -+- Thanks for the info. Your article was the only one i found usefull, and it helped my alot.
cheers
Mike
2001-06-29 -+- Michael Seckelmann -+- mseckel@t-online.de -+- Hello,
i would like to thank you for this article. It helps me a lot.
2001-07-12 -+- ramaraju -+- ramaraju@amsoft.net -+- I installes openldap2.0.11 version and i want to start the slapd as a normal
user by slapd -f ../etc/openldap/slapd.conf -u xxx .But it doesn't start and also doesn't complain
I am working on a HP-UX machine . So can anyone suggest any solution for this problem
2001-08-02 -+- chetan merai -+- meraic@yahoo.com -+-
Hello sir I, chetan merai,studying in B Sc(Tech) in computr technology branch,want to
know about ldap.
I have pcquest linux 7.1 based on red hat and ldap is already there in it.
I read your article on ldap and then I did run slapd and then I made one file as you have given innyour article after using ldapadd command it shows options and when Itry to search the entry as shown in your article it gives me the following message
SASL/GSSAPI authentication started
ldap_sasl_interactive_bind_s : local error
please sir can you tell me what's wrong ?
2001-08-02 -+- Nikhil Gupte -+- nikhilgupte@yahoo.com -+- Great article to get started... however,
You might want to change the line:
ldapadd -D "cn=Manager, o=linuxfocus.org" -w secret < linuxfocus.org.ldif
To:
ldapadd -D "cn=Manager, o=linuxfocus.org" -x -w secret < linuxfocus.org.ldif
cos the password in your example is in clear text. Hope this eases the load on your mailbox.
2001-09-28 -+- Manoj Gopalakrishnan -+- manoj_gopal@angelfire.com -+-
Your article is very helpful. After reading your article I really got an initiative and started to work on LDAP and coded an simple LDAP client using C API in Linux platform as a part of a project.
I want to know more about slapd.conf file.Hope you will write another article about it later.
2001-10-20 -+- Amit Kotian -+- amitkotian@zeeaccess.com -+- Could u plz pass on the url for installation of openldap-2.0.15 on redhat linux 7.1
After creating the ldif file when i use the command ldapadd the output is
SASL/GSSAPI authentication started
ldap_sasl_interactive_bind_s : local error
Even when i use te command ldapsearch the output is
ldap_bind: Can't contact LDAP server
Could u plz help me out in solving the problem.
Regards
Amit Kotian
2002-01-08 -+- Rich Green -+- ldap@selsey-bill.demon.co.uk -+- Great article. Helped the basic stuff get into my head. As a certifiable tinkerer, all I'm trying to do with ldap is put my personal contact list on line (obviously not publicy readable). The number of bits of paper, pdas, outlook / exchange contact directories I have is getting to a stupid level so with your article and references, into the breach I go. Well written, once again and thanks.
2002-01-27 -+- Luis Garcia -+- luis@lmgpc.demon.co.uk -+- Your article on LDAP was very usefull - great article for beginners
Thanks
2002-02-10 -+- louis -+- lromulas@hotmail.com -+- hi there, am facing a problem with my ldap server. I used the precompiled version of linux 7.2 distribution and after creating the ldif file as from the article.When i use the command ldapadd to add the file i get the message SASL/GSSAPI authentication started
ldap_sasl_interactive_bind_s : local error
please advice on solving the problem.
thankyou for the great aticle, it made me know where to start.
2002-05-16 -+- Walter Singleton -+- walter.l.singleton@usace.army.mil -+- Hi, I am facing a problem with my ldap server setup. I downloaded from openldap.org the lastest release version for linux 7.2 distribution complied, and after creating the ldif file as from the Quick-Start guide article.I started the service with:
/usr/local/libexec/slapd -f /usr/local/etc/openldap/slapd.conf
When I use the command ldapadd to add the file I get:
[root@nomad tmp]# /usr/local/bin/ldapadd -x -D "cn=root,dc=saj.usace.army,dc=mil" -W -f /tmp/walt.ldif
Enter LDAP Password:
ldapadd: no attributes to change or add (entry="dc=k3cdswls, dc=mil objectclass: dcObject objectclass: usace o: OpenLDAP test dc:k3cdswls dn: cn=Manager, dc=saj.usace.army, dc=mil objectclass person cn: Manager")
ldif_record() = 89
[root@nomad bin]# /usr/local/bin/ldapsearch -x -b 'dc=saj.usace.army,dc=mil' '(objectclass=*)'
version: 2
#
# filter: (objectclass=*)
# requesting: ALL
#
# search result
search: 2
result: 32 No such object
# numResponses: 1
[root@nomad bin]#
My slapd.conf file is as follows:
#######################################################################
# ldbm database definitions
#######################################################################
database ldbm
#suffix "dc=saj.usace.army,dc=mil"
suffix "o=saj.usace.army.mil,c=US"
rootdn "cn=root,dc=saj.usace.army,dc=mil"
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw secret
#rootpw (crypt)qazwsx23
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory /usr/local/var/openldap-ldbm
# Indices to maintain
index objectClass eq
My ldap.conf file is as follows:#
If the host and base aren't here, then the DNS RR
# _ldap._tcp.[defaultdomain]. will be resolved. [defaultdomain]
# will be mapped to a distinguished name and the target host
# will be used as the server.
#
# Your LDAP server. Must be resolvable without using LDAP.
host 127.0.0.1
# See ldap.conf(5) for details
# This file should be world readable but not world writable.
BASE dc=saj.usace.army, dc=mil
#URI ldap://ldap.example.com ldap://ldap-master.example.c
Can you please help me.
-+- 155.82.73.251 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)
2002-06-11 -+- sanju -+- sanjuthakur4u@yahoo.com -+- I am a novice with ldap i tried out the same steps as suggested by you I got the following error
ldap_sasl_interactive_bind_s: No such attribute -+- 203.192.207.47 = Mozilla/5.0 (X11; U; Linux i586; en-US; rv:0.9.2.1) Gecko/20010901
2002-08-05 -+- Matt -+- amathew@syr.edu -+- Hi Atif,
This was an excellent article on LDAP.
I am currently trying to implement LDAP (Red Hat Linux 7.2) as part of my school project but I am stuck at starting the LDAP server. On running from root:
/usr/local/libexec/slapd
I get the following error message:
/etc/ldap/slapd.at.conf: No such file or directory
This is inspite of the slapd server being at the same place as mentioned by Atif.
Any help at all will be greatly appreciated.
Thanks,
Matt -+- 128.230.47.129 = Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)
2002-08-29 -+- Junior Brambilla -+- junior@raidbr.com.br -+- Hi,
I have MsWindows network and I want to centralize the Outlook Express address book of the all workstations in LDAP Server Linux (Openldap). The all changes there are maded on workstations address book have to update all address book of the network ...
I want know this is possible ???
Thanks.
-+- 200.203.13.29 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
2002-09-04 -+- Antoine -+- antoineb@opentext.com -+- Matthew, do you have everything installed??
How did you install ldap, from source or from RPMS??
if from RPMS, RH has a bunch of openldap... rpms, but the most important being openldap-servers...
your slapd.conf should be located in /etc/openldap -+- 204.138.115.3 = Mozilla/4.0 (compatible; MSIE 5.0; Linux) Opera 6.03 [en]
2002-09-05 -+- Sudhindra Joshi -+- sudhindra_joshi@hotmail.com -+- Hi Atif,
It is very useful for beginers like me. I will start working on it. if i find any problems, i will contanct You.
Thank you so much.
Joshi -+- 202.9.170.110 = Mozilla/4.0 (compatible; MSIE 4.01; MSN 2.5; Windows 98)
2002-09-11 -+- Vanessa Pierce -+- vpierce@torpedowire.com -+- Hello,
I am the Sys Admin @ Torpedo Wire and I want to use the LDAP server for Linux to create a corporate address book. I then want my users to be able to view this address book using Outlook 98/2000. Is this possible?
Please advise -+- 65.210.33.148 = Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0)
2002-09-24 -+- Mehmet Emin Coşkun -+- afsinbey@afsinbey.com -+- Dear Atif ,
Thanks a lot for this great article , like many people who wants to learn semantic and use LDAP I searched some docs and founded many bad tutorials..Many docs tells some LDAP details but doesn't give main goals , why we use , where we use it..
Thank you very much again.. Also I interested in do something with LDAP and JAVA. I share all when I finish..
Mehmet. -+- 193.140.164.96 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
2002-09-24 -+- Mehmet Emin Coşkun -+- afsinbey@afsinbey.com -+- Dear Atif ,
Thanks a lot for this great article , like many people who wants to learn semantic and use LDAP I searched some docs and founded many bad tutorials..Many docs tells some LDAP details but doesn't give main goals , why we use , where we use it..
Thank you very much again.. Also I interested in do something with LDAP and JAVA. I share all when I finish..
Mehmet. -+- 193.140.164.96 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
2002-10-14 -+- Kristof Anseeuw -+- Seeuwken@hotmail.com -+- Hi i'm a student in mi last year, hoping to graduate atlast,
but now we have got to do a final essay about LDAP, and my tsk in the group is to find peaple who Use LDAP in their firm, and for what purpose they use it, and if possible what their findings are concerning LDAP, is it easy to work with and stuff like that!
So if you would like to help me out here, id very much like to receive some off your comments on my mailing adress: Seeuwken@hotmail.com
thanks in advance -+- 217.136.62.150 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
2002-10-18 -+- Jacques -+- caldon@webmail.co.za -+- Hi i was wondering if someone could help my with ldap please...
I've installed all the packages needed for my ldap server..setep the .conf's files and the .ldif file...al seem well couse the service starts . but as soon as i want to ad the .ldif file with command -ldapadd -x -h localhost -D "cn=manager,dc=example,dc=co.za" -f ".ldif -W - I get the following error =
dding new entry "dc=example,dc=co.za"
ldap_add: Operations error
ldif_record() = 1
What could this be ... Please if some ldap experts could help me ..i'm a newby but just cant get enough of linux...
Mailing me with suggestions would be great
Thanx in advanced..
Caldon -+- 168.209.98.67 = Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20020830
2002-10-24 -+- Alex Aparecido dos Santos -+- aalex@uspedra.com.br -+- Estou precisando de ajuda para configurar o meu servidor de diretório no linux
LDAP, mas não consigo.
Quero utiliza-lo no outlook express no Windows como Catalogo de Endereço
alguém pode me explicar passo a passo como poderia fazer.
Agradeso pelo atenção.
Obrigado
____________________
Alex Ap. dos Santos
Suporte (REDE)
aalex@uspedra.com.br -+- 200.206.13.66 = Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020529
2003-03-06 -+- Sarath -+- sarath@netindial.com -+- Thank you very much for this article .
-+- 202.63.106.97 = Mozilla/4.72 [en] (X11; U; Linux 2.2.14-5.0 i686)
2003-07-28 -+- Maqsood -+- maqsood@drammen.online.no -+- good stuff! :-) -+- 62.70.40.197 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
2003-07-29 -+- Maqsood -+- maqsood@drammen.online.no -+- Im having this error while adding entries in LDAP!!
ldap_sasl_interactive_bind_s: No such attribute
Can anyone of help ?
Maqsood. -+- 62.70.40.197 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
2003-09-28 -+- Jure Kodzoman -+- -+- This article has been a great introduction into LDAP. Keep on the good work! -+- 193.77.250.21 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
2003-11-20 -+- latha -+- latha_nb@yaho.com -+-
Very Informative article on LDAP, especially for beginers like me.
Thank u Atif,
I would like to clarify on point that ,suppose some Records i store it in MySQL, and some records in LDAP.If my query has to retrieve from both the Database, if there may be any problem, or synchronising problem, let me know .
Thanks ®ards,
latha
cheers,
latha.
Bangalore -+- 203.200.36.226 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)
2004-01-07 -+- Sebastian Ebling -+- -+- Thank you for this article!!!
I've read 3 other documentations about ldap without understanding. After reading your article all looks easy now :)
Greetings
Sebastian -+- 80.138.239.182 = Mozilla/5.0 (X11; U; Linux i686; de-AT; rv:1.4) Gecko/20030721 Debian/1.4-1.nobse.2
2004-03-17 -+- somashekhar -+- ssonnagi@aventail.com -+- hi
thanx for these article
could u give information about ldaps.
i ve installed & configured ldap server now,
but i want to use LDAP with SSL
will u help me by giving information regarding how to use it.
-+- 61.16.170.194 = Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 (ax)
#2004-04-10 -+- db -+- -+- www.elmasuyu.net -+- 24.168.132.147 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; FunWebProducts-MyWay; .NET CLR 1.1.4322)
2004-04-14 -+- Santosh Mahajan -+- spmahajan@yahoo.com -+- Hello Atif,
Will you forward LDAP article to my email address, I wanted to try out LDAP on linux with sendmail to get authentication from LDAP
Thanks in advance
Santosh -+- 202.54.16.140 = Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030922
2004-06-15 -+- Didi -+- hardyanto@spymac.com -+- Good job Dud! I like ur article, very very helpfull to me to understand the basic concept of LDAP. Keep writing another else.
Didi
Jakarta - Indonesia
www.wcs.co.id -+- 202.169.43.146 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)
2004-07-15 -+- Qustah -+- yokki@var.com -+- Sayın Atıf hocam
Nolcak bu LDAP'ın durumu, çalıştıramıyoruz, tırmalıyoruz tırmalıyoruz bi numara olmuyor.
Diyorumki senle söyle on-line bi chat filan yapsak da dertlerimizden kurtulsak,
Muhabbetle gözlerinden öpüyorum. -+- 81.214.4.47 = Mozilla/5.0 (compatible; Konqueror/3.2; Linux) (KHTML, like Gecko)
2004-10-06 -+- maddog -+- -+- hai there, man this page was really cool, specially the way you went through the tutorial, starting from low to high with many comparisons. Keep up the good work :o).I guess now i have an idea of LDAP. small tipp! i heard there are also some LDAP browsers and i think it would not be a bad idea to include few lines regarding it. -+- 129.179.252.95 = Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4.2) Gecko/20040301
2005-01-07 -+- Nelly -+- sillycat@gmx.com -+- Hi everyone!
First, thanks Atif for this wonderful article. I had no idea of what ldap ist before but now there is light at the horizon ;)
Second, a cry for help: Please, I want to do some domain stuff on my server, so I can access user profiles from the network (win xp and mac os X machines). There is also an existing access management for the data on the server, which I would like to transform to this domain-access.
You mentioned this Idea at the end of your artikle, but there was not enough information for me to understand how to do this. Please help me!
greetz,
Nelly -+- 212.41.249.238 = Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322)
2005-04-21 -+- Himanshu Patel -+- himanshu_patel_atul@yahoo.com -+- Hello sir I, himanshu patel,
I have Red hat linux 2.1 AS based on red hat and ldap is already there in it.
I read your article on ldap and then I did run slapd and then I made one file as you have given innyour article after using ldapadd command it shows options and when I try to search the entry as shown in your article it gives me the following message
SASL/GSSAPI authentication started
ldap_sasl_interactive_bind_s : local error
please sir can you tell me what's wrong ? -+- 210.212.134.51 = Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030922
2005-04-28 -+- Himanshu Patel -+- himanshu_patel_atul@yahoo.com -+-
Anybody help me !
when im using this command error will be come.....
[root@ltsp root]# ldapadd -x -D "cn=Manager,dc=example,dc=com" -W -f /etc/openldap/example.com.ldif
Enter LDAP Password:
ldapadd: no attributes to change or add (entry="dc=example,dc=com")
ldif_record() = 89
################################################
my /etc/openldap/slapd.conf is....
################################################
database ldbm
suffix "dc=example,dc=com"
#suffix "o=My Organization Name,c=US"
rootdn "cn=Manager,dc=example,dc=com"
#rootdn "cn=Manager,o=My Organization Name,c=US"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw secret
# rootpw {crypt}ijFYNcSNctBYg
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
directory /var/lib/ldap/example.com
##################################################
my /etc/openldap/ldap.conf is ...
##################################################
#SIZELIMIT 12
#TIMELIMIT 15
#DEREF never
HOST 172.16.40.90
BASE dc=example,dc=com
####################################################
and my ldif file is...
####################################################
dn: dc=example,dc=com
dc: example
description: Root LDAP entry for example.com
objectClass: dcObject
objectClass: organizationalUnit
ou: rootobject
dn: ou=People, dc=example,dc=com
ou: People
description: All people in organisation
objectClass: organizationalUnit
Tell me if any things is wrong........
-+- 210.212.134.51 = Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030922
2006-10-17 -+- ranjith -+- ranji.ks@gmail.com -+- hi,
can anyone let me know how to insert password attribute(of an entry) into ldap in encrypted form, to be more clear right now i am encrypting the entered password externally in java code and inserting in ldap ,but when i am viewing it in LdapAdministrator(gui for ldap) it is in clear mode only there is no {CRYPT} string appended to it .is there any way to mention ldap to insert this password attribute of an entry in crypted form (like crypt,SHA or any kind of scripting methodology).
Thanks in advance,
Ranjith
-+- 61.95.130.97 = Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.7) Gecko/20060909 Firefox/1.5.0.7
2006-11-06 -+- nicole -+- -+- thanks alot for the guidelines. when i try to start the admin server i get this error httpd.worker: Syntax error on line 128 of /opt/fedora-ds/admin-serv/config/httpd.conf: Cannot load /etc/httpd/modules/mod_access.so into server: /etc/httpd/modules/mod_access.so: cannot open shared object file: No such file or directory
please help me. -+- 196.29.120.70 = Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.1) Gecko/20060313 Fedora/1.5.0.1-9 Firefox/1.5.0.1 pango-text