The situationis worsethan expected
the situation is worse. now, trying to run an ldapsearch i have the message "can't contact LDAP server". on syslog the last lines are:
Mar 26 16:11:33 amahoro slapd[1603]: @(#) $OpenLDAP: slapd 2.4.23 (Jun 16 2011 02:53:39) $#012#011buildd@murphy:/build/buildd-openldap_2.4.23-7.2-i386-Y1mwvF/openldap-2.4.23/debian/build/servers/slapd Mar 26 16:11:33 amahoro slapd[1604]: hdb_db_open: database "dc=amahoro,dc=bi" cannot be opened, err 13. Restore from backup! Mar 26 16:11:33 amahoro slapd[1604]: bdb(dc=amahoro,dc=bi): txn_checkpoint interface requires an environment configured for the transaction subsystem Mar 26 16:11:33 amahoro slapd[1604]: bdb_db_close: database "dc=amahoro,dc=bi": txn_checkpoint failed: Invalid argument (22). Mar 26 16:11:33 amahoro slapd[1604]: backend_startup_one (type=hdb, suffix="dc=amahoro,dc=bi"): bi_db_open failed! (13) Mar 26 16:11:33 amahoro slapd[1604]: bdb_db_close: database "dc=amahoro,dc=bi": alock_close failed Mar 26 16:11:33 amahoro slapd[1604]: slapd stopped.
what's happens?
-------- Original Message -------- Subject: can't modify or add uidNumber attribute Date: Mon, 26 Mar 2012 16:21:17 +0200 From: stefano stefano.malini@gmail.com To: openldap-technical@openldap.org
hi, i was modifying uidNumber attribute of a user but then has been standing for a few minutes and I stopped it:
root@amahoro:~# ldapmodify -x -W -D 'cn=Manager,dc=amahoro,dc=bi' Enter LDAP Password: dn: uid=stefano,cn=Admins,dc=amahoro,dc=bi changetype: modify replace: uidNumber uidNumber: 1001
modifying entry "uid=stefano,cn=Admins,dc=amahoro,dc=bi" . . . ctrl+c
then with an ldapsearch for this user there was not the uidNumber attribute:
dn: uid=stefano,cn=Admins,dc=amahoro,dc=bi uid: stefano cn: Stefano Malini sn: Malini gidNumber: 1000 homeDirectory: /home/Admins/stefano mail: stefano.malini@gmail.com objectClass: inetOrgPerson objectClass: top objectClass: posixAccount objectClass: shadowAccount userPassword:: e1NTSEF9b2pNOG1UT3NrT2ZVaDVyd1pUWUpSeWg3YXNxc1lXSHo= uidNumber: 1001
trying to add it
root@amahoro:~# ldapmodify -x -W -D 'cn=Manager,dc=amahoro,dc=bi' Enter LDAP Password: dn: uid=stefano,cn=Admins,dc=amahoro,dc=bi changetype: add add: uidNumber uidNumber: 1001
adding new entry "uid=stefano,cn=Admins,dc=amahoro,dc=bi" ldap_add: Undefined attribute type (17) additional info: add: attribute type undefined
you can see the error message what is wrong?
On Mon, 26 Mar 2012 17:04:23 +0200, stefano stefano.malini@gmail.com wrote:
the situation is worse. now, trying to run an ldapsearch i have the message "can't contact LDAP server". on syslog the last lines are: (...)
Have you done something as root, so root owns some of the database files but you try to run slapd as another user (with -u)? If so, fix the file permsisions and then avoid working as root.
Or did you kill -KILL slapd so it died without being able to clean up? It ought to be able to recover afterwards, but maybe it can't always do that and you need to restore from backup as it says.
I wrote:
Have you done something as root, so root owns some of the database files but you try to run slapd as another user (with -u)? If so, fix the file permsisions and then avoid working as root.
Sorry, I mean file ownerships. Though it could be file or directory permissions too, come to think of it.
openldap-technical@openldap.org
-
Hallvard B Furuseth -
stefano