[Fedora-directory-users] Error Initalizing Database
by Mike C
Directory Server 1.0 (downloaded last week)
I have created a new database (via the Console GUI from startconsole).
I cannot initalize it. I right click on the database and select
Initalize Database. It prompts for the location of a file, which I
supply. The Initalize Database progress window pops up and shortly
says "Error During Import". The Status Logs... button reveals:
"Beginning import job...
Index buffering enabled with bucket size 15
Could not open LDIF file "/root/backup.ldif"
Aborting all import threads...
Import threads aborted
Closing files...
Import failed."
It does not give a reason why it could not open the file. Ideas?
FYI: I chmod 777 the file just in case (-rwxrwxrwx 1 root root
6008801 Dec 5 12:06 backup.ldif)
Thanks,
Mike
16 years, 3 months
[Fedora-directory-users] Changes to passthru plugin from 1.0.2 to 1.0.4
by Paul Engle
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
All,
We are currently running our production servers with FDS 1.0.2 on RHEL4
with the PAM passthru plugin enabled. I'm trying to set up a new 1.0.4
server so we can replicate the production databases over to it and then
upgrade the older boxes in place.
I know that the PAM passthru plugin was included with the distro as of
1.0.3 (yay!), but it appears to have undergone some changes. When I try to
turn it on, the error log gives:
passthru-plugin - no pass through servers found in configuration (at least
one must be listed)
Reading the online Admin Guide about configuring the plugin seems to be
referring to it being used for passing off auth from one ldap server to
another, not for passing through to PAM.
I looked at the dse.ldif from the 1.0.2 server and tried just adding the
pamConfig objectclass to the plugin object on the 1.0.4 server and adding
in the appropriate attributes, but I still get the same error on startup.
Is there any other documentation other than the Admn Guide on setting up
and using the plugin in a post-1.0.2 server? Or can anyone who's set this
up offer any tips?
Thanks,
-paul
- --
Paul D. Engle | Rice University
Sr. Systems Adminstrator, RHCE | Information Technology - MS119
713-348-4702 | PO Box 1892
pengle(a)rice.edu | Houston, TX 77251-1892
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
iD8DBQFHVvWpCpkISWtyHNsRAiNuAJ4lv2k0SsnIzK4riGq7OUZnSZC+iwCgs6LK
2abqiai+QCPH0vL9qMfnQ6Q=
=1h3o
-----END PGP SIGNATURE-----
16 years, 3 months
[Fedora-directory-users] Setting up second DS questions
by Ken Marsh
I've been running NSDS 7.1 very successfully for a couple of years now
(Thanks!), but want a second DS to back it up. Accordingly I recently
installed fedora-ds-1.0.4.1.FC5.x86_64.opt.rpm on RH Enterprise Server
5.1. I haven't gotten much further than running ./setup/setup on the new
system.
Having finished the basic install, I'm now trying to figure out what to
do, and have a few questions. :-)
I was thrilled to find it show up under the admin page on the 7.1
system. However, when I click on the new server's Server Group/Directory
Server under the admin's Servers and Applications Tab, I get a window
entitled: Class Loading Error: "Failed to install a local copy of
fedora-ds-1.0.jar or one of its supporting files: error result [OK]"
So...
1. It is too much to expect to administer the 1.0.4.1 system from the
7.1? If not, what do I need to do to make it work?
2. When I try to start-admin on 1.0.4.1, I get the error:
Httpd.worker: Could not open configuration file
/opt/fedora-ds/admin-serv/conf/httpd.conf: No such file or directory
Sure enough, it's not there. Did I miss an install step or howto? Where
can I get an example to hack up for my system? I'm using
/usr/sbin/httpd.worker , which came with RHES 5.1
3. Also, can someone point me to a howto on setting up 1.0.4.1 to mirror
what the 7.1 system does? I suppose I have to either drop an ldif on the
older system and load it on the new, and/or set up some kind of
multi-master or ... ? Ideally, I would like to add/delete a user in one
system and have the other reflect that change within a reasonable time
interval.
Thanks,
Ken.
16 years, 3 months
[Fedora-directory-users] Script to Change Passwords?
by Glenn
Howdy, Guys - I need a shell script that will read a file of user IDs and
passwords and enter the passwords into Fedora Directory. The users are
already in FD; we just need to change all their passwords at once. The file
will be formatted so the user ID is in column one and the password is in
column two. We have about 8,000 users. Any help appreciated. Thanks. -
Glenn.
16 years, 3 months
[Fedora-directory-users] multi-master limit
by Jason Beavers
Hi all,
New to FedoraDS. I'm doing some research for an upcoming application that will require LDAP.
This App will consist of multiple servers (10 or more) in different geographical locations.
Each server will authenticate against itself and serve its own local data.
The full LDAP directory needs to be replicated across all servers so that users can login to any server.
I've read that there is a limit of 4 writable servers in multi-master replication. Is this a hard limit or a soft (reccomendation) limit?
The application will need to write changes directly to itself on all servers so that they are immediately available locally, then replicated to other servers.
Is this possible with FedoraDS?
Thanks in advance!
Beavrz1
____________________________________________________________________________________
Be a better sports nut! Let your teams follow you
with Yahoo Mobile. Try it now. http://mobile.yahoo.com/sports;_ylt=At9_qDKvtAbMuh1G1SQtBI7ntAcJ
16 years, 3 months
[Fedora-directory-users] RE: Floating poing exception in Fedora DS installation
by Ratnakar Sagare
Hi,
Thanks for your reply. I checked on my system once again but no success yet.
I have ncurses-5.4-13 and libtermcap-2.0.8-39 installed on my system.
The error is coming right away and no dialog box for using existing config
is seen.
I tried with strace command also & here's the output of trace.out file which
I have created
--------------------------START---------------------------------------------
execve("bin/slapd/admin/bin/ns-config", ["bin/slapd/admin/bin/ns-config",
"-f", "/tmp/a.inf", "-l", "/tmp/logA15446", "-m", "2"], [/* 24 vars */]) = 0
uname({sys="Linux", node="<my system's FQDN>", ...}) = 0
brk(0) = 0x9841000
--- SIGFPE (Floating point exception) @ 0 (0) ---
+++ killed by SIGFPE +++
-----------------------------END-------------------------------------------
Regards,
Ratnakar
-----Original Message-----
Date: Mon, 03 Dec 2007 09:55:21 -0700
From: Rich Megginson <rmeggins(a)redhat.com>
Subject: Re: [Fedora-directory-users] Floating poing exception in
Fedora DS installation
To: "General discussion list for the Fedora Directory server project."
<fedora-directory-users(a)redhat.com>
Message-ID: <475434F9.7050900(a)redhat.com>
Content-Type: text/plain; charset="iso-8859-1"
Ratnakar Sagare wrote:
>
> Hi all,
>
> I am trying to install Fedora DS 1.0.4-1 on RHEL 4 system. I have
> installed the RPM for it. While running the setup it gives following
> error on my system.
>
> I have installed jre 1.5.0 also.
>
>
>
> ./setup: line 520: 15606 Floating point exception./ns-config -f
> $inffile -l $logfile -m $installmode $doreconfig
>
> ERROR Exiting . . .
>
> Log file is /tmp/logi15532
>
>
>
> Can you please help me out in this?
>
I just tried to reproduce this on a clean RHEL4 i386 system with the
latest updates. It worked fine.
Do you get this error right away, or do you see the dialog box that asks
you if you want to use an existing configuration DS?
Do you have the packages ncurses and libtermcap installed?
One thing you could try is to use strace to see what the program is
doing. Line 520 doesn't look like the correct line, but just above that
are the calls to ns-config. You could change those lines to something
like "strace -o /tmp/trace.out ./ns-config ...."
>
>
>
>
>
> Thanks in advance
>
>
>
> Ratnakar
>
>
>
> ------------------------------------------------------------------------
16 years, 3 months
[Fedora-directory-users] Floating poing exception in Fedora DS installation
by Ratnakar Sagare
Hi all,
I am trying to install Fedora DS 1.0.4-1 on RHEL 4 system. I have installed
the RPM for it. While running the setup it gives following error on my
system.
I have installed jre 1.5.0 also.
./setup: line 520: 15606 Floating point exception./ns-config -f $inffile -l
$logfile -m $installmode $doreconfig
ERROR Exiting . . .
Log file is /tmp/logi15532
Can you please help me out in this?
Thanks in advance
Ratnakar
16 years, 4 months
[Fedora-directory-users] FDS and AD integration troubles
by Paolo Barbato
FDS 10.4 on RH Enterprise 4.5 , AD on W2003 sp2.
SSL active on both side with server certificates from same CA (openSSL).
PassSync and Replication Directory Agreement configured on SSL.
I like to share my experience just to figure out if FDS and AD could
be integrated in real life scenario.
Basically I would be able to keep in sync password and use FDS (or AD)
as a common place to manage password expiration.
Password Sync.
Since now following FDS wiki and other (few) source in Internet I has
been able to keep in sync password as follows:
password changed on AD is properly replicated on FDS
password changed on FDS (console) is properly replicated on AD
password changed on Linux (via LdapPam) is not replicated on AD. I
suspect some encoding issues, since logs seem OK.
Anybody is facing or confirm this behaviour ?
Password expiration (a must for me)
Is it possible to manage password expiration from FDS (via Managed
Password Policy for Users...right click on config/pulgins) to apply
both for AD and Linux LdapPam athenticated users? How should I manage
this ?
Second question. If activated send warning check box, how are users
notified ?
Account expiration
It seems that account disabling action is not replicated from FDS to
AD neither from AD to FDS. Is this correct?
Regards,
Paolo.
------------------------------------------------------------------------------------------------
Paolo Barbato email: mailto:paolo.barbato@igi.cnr.it
Network Administrator phone: (39-049)-829-5097
(39-049)-829-5000
Corso Stati Uniti,4 www: http://www.igi.cnr.it
35127 Camin-Padova PGP: http://www.igi.cnr.it/wwwpgp/rfx_paolo_barbato.pgp
ITALY JabberID: rfx_paolo_barbato(a)messenger.efda.org
------------------------------------------------------------------------------------------------
16 years, 4 months