[nzlug] Bootstrapping LDAP
Cliff Pratt
enkidu at cliffp.com
Thu Jan 4 14:42:43 NZDT 2007
Daniel Pittman wrote:
> Martin Kealey <martin at kurahaupo.gen.nz> writes:
>
>> This is arguably a bit OT, so apologies in advance.
>
> I don't think so -- configuring a Linux system seems pretty on-topic to
> me. In deference to that, though, feel free to take this offline with
> me and I can help you through some of this.
>
>> I've administered LDAP servers many times over the years, but now I'm
>> faced with getting one working from scratch, I have to admit I'm a bit
>> stumped.
>>
>> I've installed slapd on Debian, started the daemon, but it's "lights
>> on nobody home". Or more precisely, all the doors are locked and
>> nobody's answering.
>>
>> I've read a gazillion web guides, varying in quality from excellent to
>> execrable, and basically I can't get authorisation to add the base
>> records which are supposed to be the authorisation for everything
>> else. I've added a DN and secret in /etc/slapd/ldap.conf (and several
>> other places), but to no avail.
>>
>> Does anyone have any tips?
>
> Er, yes. For example "never clear your ears with pointed objects."
>
> If you want some that are on-topic to your request, though, you will
> need to be a little more specific about what you actually want to do.
>
> Do you want to:
>
> - authenticate local Unix users from LDAP
> - migrate existing accounts to LDAP
> - authenticate web users from LDAP
> - manage mail aliases from LDAP
> - synchronise with another directory service
>
Daniel, as he can't get access to add stuff, what he wants to use it for
is surely irrelevant at this stage, isn't it?
Cheers,
Cliff
More information about the NZLUG
mailing list