Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openldap]

OpenLDAP Software is a free, open source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. LDAP is a platform-independent protocol for querying and modifying data using directory services running over TCP/IP.

OpenLDAP Software is a free, open source implementation of the Lightweight Directory Access Protocol (LDAP) developed by the OpenLDAP Project. LDAP is a platform-independent protocol for querying and modifying data using directory services running over TCP/IP.

It is released under its own BSD-style license called the OpenLDAP Public License. The OpenLDAP Project was started in 1998 by Kurt Zeilenga which was initially based on a clone of the LDAP reference implementation from the University of Michigan.

1467 questions
12
votes
2 answers

Slappasswd output randomized

I was expecting slappasswd to produce a fixed hash but it appears that the output is randomized as I never get the same output for the same input password: $ slappasswd -s secret {SSHA}mCXsPZkfgQYZr2mKHpy5Iav+2S2XlVU3 $ slappasswd -s…
Max
  • 3,563
11
votes
4 answers

ldap_modify: Other (e.g., implementation specific) error (80), handler exited with 1

When modifying the Open-LDAP configuration using: dn: olcDatabase={2}hdb,cn=config changetype: modify replace: olcAccess olcAccess: {0}to * by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" write by * none I get the…
Mildred
  • 825
10
votes
2 answers

Can't access cn=config through Apache Directory Studio GUI

I am quite familiar with openldap. The dynamic configuration is quite new to me. So I wanted to make life easier and change openldap configuration through Apache Directory Studio GUI. Openldap is installed on Debian Jessie and Version slapd…
machschev
  • 151
10
votes
3 answers

"wrong attributetype" when using ldapadd

When attempting to load the following configuration dn: olcDatabase={1}hdb,cn=config changetype: modify add: olcMirrorMode olcMirrorMode: TRUE I get the following error: root@box:~# ldapadd -Y EXTERNAL -H ldapi:/// -f mirrormode.ldif…
seb
  • 391
10
votes
3 answers

Disallow global anonymous bind with cn=config

With slapd.conf you could globally disable anonymous binding and require authentication with the following static directives: disallow bind_anon require authc How can I achieve the same global settings, but using the new cn=config live…
Michael P
  • 297
9
votes
1 answer

ldap export and import

Is it possible to export all the data inside openldap for example using ldapsearch or some other tool to a (ldif?) file and then import everything on another server and put this in a script that would be run every day. So that I could use the other…
Jure1873
  • 3,732
8
votes
2 answers

ldap_add error (80) handler exited with 1

I'm trying to follow this tutorial to setup a basic LDAD server (OpenLDAP) for cleint authentication, but I am stuck on the step where I add the back-end configuration. I've created my backend.ldif file as specified, and I'm attempting to add it…
Nick
  • 4,656
7
votes
1 answer

When is ldapi:// -Y EXTERNAL needed? Apparently, cosine.ldif breaks without it

I'm new to OpenLDAP (but not Microsoft Active Directory) and reading zytrax's openldap guide. I'm using OpenLDAP 2.4.44 on CentOS 7.4, as shown here: @(#) $OpenLDAP: slapd 2.4.44 (Aug 4 2017 14:23:27) $ …
mellow-yellow
  • 441
7
votes
2 answers

Modify openLDAP cn=config without slapd running

I am trying to setup a Multi-Master openLDAP (PoC) cluster. Somewhere I created bad config and now slapd will not start. Being that the cn=config/olc config is CRC32 tagged, it won't accept manual changes. So, how do I make config changes without…
virullius
  • 1,058
6
votes
2 answers

OpenLDAP cn=config: No such object (32)?

I'm attempting to follow several tutorials on setting the root LDAP password (our previous sysadmin departed...abruptly), which all say more or less the same…
krivard
  • 192
5
votes
3 answers

Ubuntu OpenLDAP: TLS init def ctx failed: -1

I had a working OpenLDAP but broke it while trying to configure SSL using the instructions here: https://help.ubuntu.com/10.04/serverguide/C/openldap-server.html. Now I'm getting the following error when I try to start ldap with -d -1: TLS: only one…
pandoh
  • 83
4
votes
1 answer

OpenLDAP : retrieve members of a group

I enabled memberof module in openldap. Added two groups and some members under them. (groupOfNames) When I printed the members of a particular group using the filter (&(objectClass=groupOfNames)(cn=bowlers)), it prints only the first member of the…
user2402244
  • 51
4
votes
1 answer

When Tried to Do ldapadd got this error ldap_add: No such object (32)

I have Following Entries in my slapd.conf ####################################################################### # ldbm and/or bdb database definitions ####################################################################### #backend …
Pradeep Gupta
  • 387
4
votes
1 answer

Configuring Amazon Linux authenticate to LDAP server

I was wondering if anyone had success in configuring Amazon Linux to authenticate to an LDAP server? EDIT: For more information on what I have done: I disabled anonymous access on my OpenLDAP server, so I am trying to have my openldap client on…
Hank
  • 171
4
votes
1 answer

LDAP userPassword encryption?

When I use ldapsearch command, I see my password (is 'abc123') is encrypted in openldap: userPassword:: e1NTSEF9THk4YmtNTUxHV09sOEYvdUdKRE1McFR6eTU2OWNQRVo= I tried to encode my password on http://www.onlinehashcrack.com/hash-calculator.php but…
tivalat
  • 43
1
2 3
9 10