It is kind of messy here, pls don't continue to do any other thing, I strongly suggest
you start from FRESH and reinstall FDS7.1 again.
OK assuming you prefer to use
foo.com as the LDAP domain (nisdomain), the baseDN (where
the topmost rootDN is) will be dc=foo,dc=com, if you choose "populate with sample
data", I think the ou=People and ou=Groups will be created, note that ou=group will
not be created.
I am not sure and couldn't recall if FDS7.1 installation will create the nisDomain
object in the rootDN, if it does not, you could create it by accessing this rootDN in
admin server/open directory, click rootDN, add an objectClass "nisDomainObject"
and attribute "nisDomain", with value "foo.com" in it (without the
quotes).
If you query everything, the rootDN is listed first, it will be something like:
# /usr/bin/ldapsearch –h
ldap1.foo.com -b "dc=foo,dc=com" -L
"objectclass=*" | more
dn: dc=foo,dc=com
dc: foo
objectClass: top
objectClass: domain
objectClass: nisDomainObject
nisDomain:
foo.com
...
Since most DS product standardize on using ou=group as the group data OU, instead of
ou=Groups, do add "ou=group" using admin console.
Again whatever you do, don't jump, don't do "ldaplist" without first
making sure "ldapclient" run OK, ldap_cachemgr started OK and show no error in
its log, and so on.
Gary
-----Original Message-----
From: fedora-directory-users-bounces(a)redhat.com on behalf of Igor
Sent: Thu 8/25/2005 11:17 PM
To: General discussion list for the Fedora Directory server project.
Cc:
Subject: RE: [Fedora-directory-users] getting solaris 8 to talk to FDS
--- "Tay, Gary" <Gary_Tay(a)platts.com> wrote:
I think you should put "objectclass=*" (search filter) at
the end, see
"man ldapsearch"
If you need to do anything and are not familar with LDAP command tools,
use the admin server to do it.
IIRC all your LDAP data should have baseDN dc=composers,dc=foo,dc=com,
if your nisdomain (LDAP domain) is set as
composers.foo.com.
I changed it:
#
foo.com,
foo.com
dn: nisdomain=foo.com,dc=foo,dc=com
objectClass: top
objectClass: nisdomainobject
nisDomain:
foo.com
bash-2.03# ldaplist -l
ldaplist: Object not found (LDAP ERROR (50): Insufficient access.)
Gary, sorry for being dense but where's the baseDN? I need to check what it is...
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
--
Fedora-directory-users mailing list
Fedora-directory-users(a)redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users