From dave at morrisette.net Sun Dec 4 14:27:13 2011 From: dave at morrisette.net (David Morrisette) Date: Sun, 04 Dec 2011 14:27:13 -0500 Subject: [Lvlug] List active? Message-ID: <4EDBC991.9020301@morrisette.net> Hello, My last email from the list was in May 2011. I am sending this email partly to make sure the list is still active, and to make sure that something is not broken on my end. Cheers, David Morrisette From lvlug at rjbs.manxome.org Sun Dec 4 14:33:04 2011 From: lvlug at rjbs.manxome.org (Ricardo Signes) Date: Sun, 4 Dec 2011 14:33:04 -0500 Subject: [Lvlug] List active? In-Reply-To: <4EDBC991.9020301@morrisette.net> References: <4EDBC991.9020301@morrisette.net> Message-ID: <20111204193304.GA7236@cancer.codesimply.com> * David Morrisette [2011-12-04T14:27:13] > My last email from the list was in May 2011. I am sending this > email partly to make sure the list is still active, and to make sure > that something is not broken on my end. Message received! -- rjbs From dave at morrisette.net Sun Dec 4 14:45:23 2011 From: dave at morrisette.net (David Morrisette) Date: Sun, 04 Dec 2011 14:45:23 -0500 Subject: [Lvlug] LDAP anyone? Message-ID: <4EDBCDD3.6040302@morrisette.net> Hello LVLUGers, I have been playing with LDAP, and have been finding it rather a challenge. Has anyone set up an LDAP server with NIS mapping capabilities? I started setting up LDAP on CentOS 6, and got LDAP to do an ldapsearch command successfully, but had trouble getting past that. It was very confusing. I dropped back to CentOS 5.7 and was able to get LDAP to run, did the ldapsearch command, slapcat, and was able to add a record. I made a self signed certificate, and tried to authenticate. When I "su - " to what I think is a valid id on the LDAP server, the request locks up and I have to hit a c to break out... The logs complain about an invalid CA. So, my question(s) are: * Is there anyone with LDAP experience on the list who wouldn't mind entertaining LDAP questions as I struggle through the process of trying to get this working? * Is there anyone with no LDAP experience on the list who wouldn't mind entertaining LDAP questions as I struggle through the process of trying to get this working? * Is there anyone interested in getting together to see what can be done to get an LDAP implementation up and running? Cheers, David -------------- next part -------------- An HTML attachment was scrubbed... URL: From linc at lincgeek.org Sun Dec 4 15:33:34 2011 From: linc at lincgeek.org (Lincoln Fessenden) Date: Sun, 4 Dec 2011 15:33:34 -0500 Subject: [Lvlug] List active? In-Reply-To: <4EDBC991.9020301@morrisette.net> References: <4EDBC991.9020301@morrisette.net> Message-ID: <20111204203334.GA3552@sasquatch> On Sun, Dec 04, 2011 at 02:27:13PM -0500, David Morrisette wrote: > Hello, > > My last email from the list was in May 2011. I am sending this > email partly to make sure the list is still active, and to make sure > that something is not broken on my end. > > Cheers, > David Morrisette > > > _______________________________________________ > Lvlug mailing list > Lvlug at thelinuxlink.net > https://www.thelinuxlink.net/mailman/listinfo/lvlug Works over here! -- -Linc Fessenden In the Beginning there was nothing, which exploded - Yeah right... From sollog at digiraticonsulting.com Sun Dec 4 18:13:55 2011 From: sollog at digiraticonsulting.com (Munroe Sollog) Date: Sun, 4 Dec 2011 18:13:55 -0500 Subject: [Lvlug] LDAP anyone? In-Reply-To: <4EDBCDD3.6040302@morrisette.net> References: <4EDBCDD3.6040302@morrisette.net> Message-ID: You are in luck. I have some to a lot of LDAP experience and I just happened to check my LVLUG folder today. While I can't speak toward the specific versions used in Centos and what custom changes the Centos community does to slapd, I can guess that you are running into the move from standard conf files to LDAP-stored configuration. At some point in the not-so-distant past, the slapd community decided it was a good idea to store the slapd configuration *inside* a DIT tree (cn=config). This makes doing some things very convenient, especially because you no longer have to restart slapd to make changes to the running daemon. However, it increases the barrier to entry quite significantly. I use Apache Directory Studio to manage my various LDAP installations. While, I prefer the command-line for most things, ldap has so many options that I can never remember I find that I am more productive if I just use ADS. I have a few production boxes working perfectly using Debian Squeeze. My personal LDAP server is storing my DHCP leases, and DHCP options for my home network. Let me know if you have specific questions I can probably help. - Munroe On Dec 4, 2011, at 2:45 PM, David Morrisette wrote: > Hello LVLUGers, > > I have been playing with LDAP, and have been finding it rather a challenge. Has anyone set up an LDAP server with NIS mapping capabilities? > > I started setting up LDAP on CentOS 6, and got LDAP to do an ldapsearch command successfully, but had trouble getting past that. It was very confusing. > > I dropped back to CentOS 5.7 and was able to get LDAP to run, did the ldapsearch command, slapcat, and was able to add a record. I made a self signed certificate, and tried to authenticate. When I "su - " to what I think is a valid id on the LDAP server, the request locks up and I have to hit a c to break out... The logs complain about an invalid CA. > > So, my question(s) are: > ? Is there anyone with LDAP experience on the list who wouldn't mind entertaining LDAP questions as I struggle through the process of trying to get this working? > ? Is there anyone with no LDAP experience on the list who wouldn't mind entertaining LDAP questions as I struggle through the process of trying to get this working? > ? Is there anyone interested in getting together to see what can be done to get an LDAP implementation up and running? > Cheers, > David > > _______________________________________________ > Lvlug mailing list > Lvlug at thelinuxlink.net > https://www.thelinuxlink.net/mailman/listinfo/lvlug Munroe Sollog Digirati Consulting sollog at digiraticonsulting.com (610) 332-7234 x805 From dave at morrisette.net Mon Dec 5 09:48:56 2011 From: dave at morrisette.net (David Morrisette) Date: Mon, 05 Dec 2011 09:48:56 -0500 Subject: [Lvlug] LDAP anyone? In-Reply-To: References: <4EDBCDD3.6040302@morrisette.net> Message-ID: <4EDCD9D8.7000108@morrisette.net> Hi Munroe, > You are in luck. This is for certain! > Let me know if you have specific questions I can probably help. If it is OK, I am going to start over with the install of the LDAP on CentOS 5.7 and describe to you what I am doing, and where it is failing. If you think this starts to be too much noise, let me know. I will be working on this in the evenings. Even though this is primarily for a real work item, I don't have time to play extensively during the work day... I'll send something in the next day or two... Cheers, David On 12/04/2011 06:13 PM, Munroe Sollog wrote: > You are in luck. I have some to a lot of LDAP experience and I just happened to check my LVLUG folder today. While I can't speak toward the specific versions used in Centos and what custom changes the Centos community does to slapd, I can guess that you are running into the move from standard conf files to LDAP-stored configuration. At some point in the not-so-distant past, the slapd community decided it was a good idea to store the slapd configuration *inside* a DIT tree (cn=config). > > This makes doing some things very convenient, especially because you no longer have to restart slapd to make changes to the running daemon. However, it increases the barrier to entry quite significantly. > > I use Apache Directory Studio to manage my various LDAP installations. While, I prefer the command-line for most things, ldap has so many options that I can never remember I find that I am more productive if I just use ADS. > > I have a few production boxes working perfectly using Debian Squeeze. My personal LDAP server is storing my DHCP leases, and DHCP options for my home network. Let me know if you have specific questions I can probably help. > > - Munroe > On Dec 4, 2011, at 2:45 PM, David Morrisette wrote: > > >> Hello LVLUGers, >> >> I have been playing with LDAP, and have been finding it rather a challenge. Has anyone set up an LDAP server with NIS mapping capabilities? >> >> I started setting up LDAP on CentOS 6, and got LDAP to do an ldapsearch command successfully, but had trouble getting past that. It was very confusing. >> >> I dropped back to CentOS 5.7 and was able to get LDAP to run, did the ldapsearch command, slapcat, and was able to add a record. I made a self signed certificate, and tried to authenticate. When I "su - " to what I think is a valid id on the LDAP server, the request locks up and I have to hit a c to break out... The logs complain about an invalid CA. >> >> So, my question(s) are: >> ? Is there anyone with LDAP experience on the list who wouldn't mind entertaining LDAP questions as I struggle through the process of trying to get this working? >> ? Is there anyone with no LDAP experience on the list who wouldn't mind entertaining LDAP questions as I struggle through the process of trying to get this working? >> ? Is there anyone interested in getting together to see what can be done to get an LDAP implementation up and running? >> Cheers, >> David >> >> _______________________________________________ >> Lvlug mailing list >> Lvlug at thelinuxlink.net >> https://www.thelinuxlink.net/mailman/listinfo/lvlug >> > Munroe Sollog > Digirati Consulting > sollog at digiraticonsulting.com > (610) 332-7234 x805 > > _______________________________________________ > Lvlug mailing list > Lvlug at thelinuxlink.net > https://www.thelinuxlink.net/mailman/listinfo/lvlug >