Talk:OpenLDAP Authentication

From ArchWiki
Revision as of 16:01, 5 December 2012 by Alexk (Talk | contribs) (Overhaul: new section)

Jump to: navigation, search

Error

Following this guide and the other one out of the box I get the following error when trying to import (ldapadd) or search (ldapsearch)

slapd[20458]: fd=12 DENIED from unknown (127.0.0.1)

And yes I do have slapd in the hosts.allow

Add to /etc/hosts.allow:
slapd: 127.0.0.1
Peleki 11:14, 21 August 2010 (EDT)

Suggestions

If you want hdb as backend, you have to adjust the PKGBUILD to --enable-hdb and rebuild the package

To disable the IPV6 error, add -4 to the slapd init script at line 14 (/usr/sbin/slapd -4 $SLAPD_OPTIONS)

To disable the " openldap configure monitor database to enable" add "database monitor" in /etc/openldap/slapd.conf BEFORE any database backend type (hdb or bdb)

--mvinnicius 19:55, 14 February 2011 (EST)

For the record, it's probably better to add -4 to the SLAPD_OPTIONS variable in /etc/conf.d/slapd than to modify the rc-script. --DJPohly 21:09, 14 February 2011 (EST)

Merge request

See Talk:LDAP_Authentication#Merge?. -- Kynikos 09:31, 7 January 2012 (EST)

Overhaul

I started editing the page with the goal of merging it with the LDAP Authentication one and also with the main OpenLDAP article. I rewrote the introduction and added some explanations for the client side like NSS and PAM. I'm gooing to remove the pam_ldap and nss_ldap bit and use nss_pam_ldapd from AUR which is the most uptodate (and robust) version. If anyone has any objections feel free to say so.