I am trying to setup a server and running into an issue whereby I cannot authenticate using the rootdn. (I am new to OPENLDAP so apologies in advance if this is a basic question)
The problem is I get "Invalid Credentials" returned
Here is an excerpt from my Slapd.conf file
database bdb suffix "dc=my-domain,dc=com" checkpoint 1024 15 rootdn "cn=Manager,dc=my-domain,dc=com" # Cleartext passwords, especially for the rootdn, should # be avoided. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw secret rootpw {crypt}ijFYNcSNctBYg
And here is the OpenLDAP command I run:
[root@localhost rgolding]# ldapadd -D cn=Manager,dc=my-domain,dc=com -w secret -f /tmp/newentry ldap_bind: Invalid credentials (49) [root@localhost rgolding]#
And here is the LDAP entry I am trying to add:
[root@localhost rgolding]# more /tmp/newentry
dn: cn=Barbara Jensen,dc=my-domain,dc=com ObjectClass: person cn: Barbara Jensen cn: Babs Jensen sn: Jensen title: the world's most famous mythical manager mail: bjensen@example.com uid: bjensen
Thanks in advance
Richard
--On Friday, March 12, 2010 7:24 AM +0000 Richard Golding richard.golding@zen.co.uk wrote:
I am trying to setup a server and running into an issue whereby I cannot authenticate using the rootdn. (I am new to OPENLDAP so apologies in advance if this is a basic question)
The problem is I get "Invalid Credentials" returned
Here is an excerpt from my Slapd.conf file
database bdb suffix "dc=my-domain,dc=com" checkpoint 1024 15 rootdn "cn=Manager,dc=my-domain,dc=com" # Cleartext passwords, especially for the rootdn, should # be avoided. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw secret rootpw {crypt}ijFYNcSNctBYg
Don't use crypt passwords. Use the slappasswd command to generate yourself a nice SSHA hash.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
On Fri, 2010-03-12 at 07:24 +0000, Richard Golding wrote:
The problem is I get "Invalid Credentials" returned
Here is an excerpt from my Slapd.conf file
...
rootpw secret rootpw {crypt}ijFYNcSNctBYg
Maybe you should comment those and replace it by $ /usr/sbin/slappasswd -h {SSHA} -s secret {SSHA}TDoz/xGx/ccKS94s0+uXLWIZ04XRd2E4
Because I get problems with $ /usr/sbin/slappasswd -h {CRYPT} -s secret Password generation failed for scheme {CRYPT}: scheme not recognized
openldap-software@openldap.org
-
Quanah Gibson-Mount -
Richard Golding -
tjoen