HI ,
We are trying to install openldap.x86_64 - 2.4.44-21.el7_6 on an Linux RHEL 7.7 on AWS .
We have installed and made changes to the config files and did a slaptest of the config file as shown below .
[root@efg-ac cn=config]# slaptest -u 5ea6064f ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={0}config.ldif" 5ea6064f ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={2}hdb.ldif" config file testing succeeded
Now we are importing the ldif file from our current on-prem server . Even though we were getting different errors earlier , after all the changes we have made to the config , the error that we are getting now is ldap_bind error for the credentials .
[root@efg-dev cn=config]# ldapadd -w xxxxxxxx -x -D "cn=Manager,dc=bpost,dc=be" -f ldap_dump-27042020-DEV.ldif ldap_bind: Invalid credentials (49)
We are not sure which password to give here .
We have given the same credentials in the config file : olcDatabase={2}hdb.ldif olcRootDN: cn=Manager,dc=bpost,dc=be olcRootPW: xxxxxxxx
Regards, Pranjit | Lead Consultant |B2B Cell:- +91-9573080955 pranjit_biswas@infosys.commailto:pranjit_biswas@infosys.com PTO Plan :- None
Le 02/05/2020 à 18:24, Pranjit Biswas a écrit :
HI ,
We are trying to install openldap.x86_64 - 2.4.44-21.el7_6 on an Linux RHEL 7.7 on AWS .
We have installed and made changes to the config files and did a slaptest of the config file as shown below .
[root@efg-ac cn=config]# slaptest -u
5ea6064f ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={0}config.ldif"
5ea6064f ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={2}hdb.ldif"
config file testing succeeded
Now we are importing the ldif file from our current on-prem server .
Even though we were getting different errors earlier , after all the changes we have made to the config , the error that we are getting now is ldap_bind error for the credentials .
[root@efg-dev cn=config]# ldapadd -w *xxxxxxxx *-x -D "cn=Manager,dc=bpost,dc=be" -f ldap_dump-27042020-DEV.ldif
*ldap_bind: Invalid credentials (49)*
We are not sure which password to give here .
We have given the same credentials in the config file : olcDatabase={2}hdb.ldif
olcRootDN: cn=Manager,dc=bpost,dc=be
olcRootPW: *xxxxxxxx*
Just to be sure, did you give the password in clear text in ldapadd command?
This is how password was created ..
slappasswd -s test1234 {SSHA}wbMAL5Q8I8yDEfyCaau1irgIgBSqUQAb
This SSHA PW has been updated in olcDatabase={2}hdb.ldif. olcRootPW: {SSHA}wbMAL
Now I am using the pw in ldapadd as shown below .
[root@efg-dev cn=config]# ldapadd -x -D cn=Manager,dc=bpost,dc=be -w test1234 -f ldap_dump-30012018_For_AC1.ldif ldap_bind: Invalid credentials (49)
Regards, Pranjit | Lead Consultant |B2B Cell:- +91-9573080955 pranjit_biswas@infosys.commailto:pranjit_biswas@infosys.com PTO Plan :- None
From: Clément OUDOT clement.oudot@worteks.com Sent: Monday, May 4, 2020 1:49 PM To: openldap-technical@openldap.org Subject: Re: OpenLDAP help - Import issue
[**EXTERNAL EMAIL**]
Le 02/05/2020 à 18:24, Pranjit Biswas a écrit : HI ,
We are trying to install openldap.x86_64 - 2.4.44-21.el7_6 on an Linux RHEL 7.7 on AWS .
We have installed and made changes to the config files and did a slaptest of the config file as shown below .
[root@efg-ac cn=config]# slaptest -u 5ea6064f ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={0}config.ldif" 5ea6064f ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={2}hdb.ldif" config file testing succeeded
Now we are importing the ldif file from our current on-prem server . Even though we were getting different errors earlier , after all the changes we have made to the config , the error that we are getting now is ldap_bind error for the credentials .
[root@efg-dev cn=config]# ldapadd -w xxxxxxxx -x -D "cn=Manager,dc=bpost,dc=be" -f ldap_dump-27042020-DEV.ldif ldap_bind: Invalid credentials (49)
We are not sure which password to give here .
We have given the same credentials in the config file : olcDatabase={2}hdb.ldif olcRootDN: cn=Manager,dc=bpost,dc=be olcRootPW: xxxxxxxx
Just to be sure, did you give the password in clear text in ldapadd command?
--
Clément Oudot | Identity Solutions Manager
clement.oudot@worteks.commailto:clement.oudot@worteks.com
Worteks | https://www.worteks.comhttps://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.worteks.com%2F&data=02%7C01%7CPranjit_Biswas%40infosys.com%7Cae14ba0a3eaf437c19c608d7f0040e3a%7C63ce7d592f3e42cda8ccbe764cff5eb6%7C1%7C0%7C637241772538563938&sdata=MIb2s%2BlYzYgklkDAml%2F4klNF05r8WMZuSNjZICJwZYo%3D&reserved=0
Le 04/05/2020 à 11:51, Pranjit Biswas a écrit :
This is how password was created ..
slappasswd -s test1234
{SSHA}wbMAL5Q8I8yDEfyCaau1irgIgBSqUQAb
This SSHA PW has been updated in olcDatabase={2}hdb.ldif.
olcRootPW: {SSHA}wbMAL
This is your mistake. You must not directly edit the LDIF files. Use ldapmodify or export/import your configuration.
--On Monday, May 4, 2020 10:51 AM +0000 Pranjit Biswas Pranjit_Biswas@infosys.com wrote:
This SSHA PW has been updated in olcDatabase={2}hdb.ldif.
olcRootPW: {SSHA}wbMAL
Each file in the cn=config DATABASE has this line at the start:
# AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify.
You may wish to read that line and understand what it's telling you.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
Any reply would be great. Please let us know..
Regards, Pranjit | Lead Consultant |B2B Cell:- +91-9573080955 pranjit_biswas@infosys.commailto:pranjit_biswas@infosys.com PTO Plan :- None
From: Pranjit Biswas Sent: Monday, May 4, 2020 3:22 PM To: Clément OUDOT clement.oudot@worteks.com; openldap-technical@openldap.org Subject: RE: OpenLDAP help - Import issue
This is how password was created ..
slappasswd -s test1234 {SSHA}wbMAL5Q8I8yDEfyCaau1irgIgBSqUQAb
This SSHA PW has been updated in olcDatabase={2}hdb.ldif. olcRootPW: {SSHA}wbMAL
Now I am using the pw in ldapadd as shown below .
[root@efg-dev cn=config]# ldapadd -x -D cn=Manager,dc=bpost,dc=be -w test1234 -f ldap_dump-30012018_For_AC1.ldif ldap_bind: Invalid credentials (49)
Regards, Pranjit | Lead Consultant |B2B Cell:- +91-9573080955 pranjit_biswas@infosys.commailto:pranjit_biswas@infosys.com PTO Plan :- None
From: Clément OUDOT <clement.oudot@worteks.commailto:clement.oudot@worteks.com> Sent: Monday, May 4, 2020 1:49 PM To: openldap-technical@openldap.orgmailto:openldap-technical@openldap.org Subject: Re: OpenLDAP help - Import issue
[**EXTERNAL EMAIL**]
Le 02/05/2020 à 18:24, Pranjit Biswas a écrit : HI ,
We are trying to install openldap.x86_64 - 2.4.44-21.el7_6 on an Linux RHEL 7.7 on AWS .
We have installed and made changes to the config files and did a slaptest of the config file as shown below .
[root@efg-ac cn=config]# slaptest -u 5ea6064f ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={0}config.ldif" 5ea6064f ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={2}hdb.ldif" config file testing succeeded
Now we are importing the ldif file from our current on-prem server . Even though we were getting different errors earlier , after all the changes we have made to the config , the error that we are getting now is ldap_bind error for the credentials .
[root@efg-dev cn=config]# ldapadd -w xxxxxxxx -x -D "cn=Manager,dc=bpost,dc=be" -f ldap_dump-27042020-DEV.ldif ldap_bind: Invalid credentials (49)
We are not sure which password to give here .
We have given the same credentials in the config file : olcDatabase={2}hdb.ldif olcRootDN: cn=Manager,dc=bpost,dc=be olcRootPW: xxxxxxxx
Just to be sure, did you give the password in clear text in ldapadd command?
--
Clément Oudot | Identity Solutions Manager
clement.oudot@worteks.commailto:clement.oudot@worteks.com
Worteks | https://www.worteks.comhttps://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.worteks.com%2F&data=02%7C01%7CPranjit_Biswas%40infosys.com%7Cae14ba0a3eaf437c19c608d7f0040e3a%7C63ce7d592f3e42cda8ccbe764cff5eb6%7C1%7C0%7C637241772538563938&sdata=MIb2s%2BlYzYgklkDAml%2F4klNF05r8WMZuSNjZICJwZYo%3D&reserved=0
--On Tuesday, May 5, 2020 9:00 AM +0000 Pranjit Biswas Pranjit_Biswas@infosys.com wrote:
Any reply would be great. Please let us know..
You were sent multiple replies.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
openldap-technical@openldap.org
-
Clément OUDOT -
Pranjit Biswas -
Quanah Gibson-Mount