#1
  1. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Sep 2003
    Posts
    254
    Rep Power
    12

    Failed to connect to LDAP server port 389


    This is what i get when trying to get the ldap configuration through webmin. When i do a ldapsearch in console modus, i get the right answers.

    [root@einstein root]# ldapsearch -x -b 'dc=bahadoer,dc=nl' 'objectclass=*'
    # extended LDIF
    #
    # LDAPv3
    # base <dc=bahadoer,dc=nl> with scope sub
    # filter: objectclass=*
    # requesting: ALL
    #

    # bahadoer.nl
    dn: dc=bahadoer,dc=nl
    dc: bahadoer
    description: Root LDAP entry bahadoer.nl
    objectClass: dcObject
    objectClass: organizationalUnit
    ou: rootobject

    # People, bahadoer.nl
    dn: ou=People,dc=bahadoer,dc=nl
    ou: People
    description: All people in organisation
    objectClass: organizationalUnit

    blablabla......

    Does this mean that my ldap configuration is alright and the error lies in the webmin module.??
  2. #2
  3. Psycho Canadian
    Devshed Demi-God (4500 - 4999 posts)

    Join Date
    Jan 2001
    Location
    Canada
    Posts
    4,846
    Rep Power
    635
    yep most likly, but it seems like it maybe how webmin is configured, perhaps you forgot to include something? the host the user dn the password? perhaps one is wrong
  4. #3
  5. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Sep 2003
    Posts
    254
    Rep Power
    12
    well, that is strange, cos the log info is read from the /etc/openldap/sldap.conf and all the lines from ldap.conf are commented.
  6. #4
  7. Psycho Canadian
    Devshed Demi-God (4500 - 4999 posts)

    Join Date
    Jan 2001
    Location
    Canada
    Posts
    4,846
    Rep Power
    635
    sounds like a new unchanged sldap.conf, you need to set it up (unless I'm missing somethign)
  8. #5
  9. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Sep 2003
    Posts
    254
    Rep Power
    12
    No sorry, but i changed it, here it is

    # $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.23.2.8 2003/05/24
    include /etc/openldap/schema/core.schema
    include /etc/openldap/schema/cosine.schema
    include /etc/openldap/schema/inetorgperson.schema
    include /etc/openldap/schema/nis.schema
    include /etc/openldap/schema/redhat/autofs.schema
    #include /etc/openldap/schema/mail-routing.schema

    # Allow LDAPv2 client connections. This is NOT the default.
    allow bind_v2

    pidfile /var/run/slapd.pid
    #argsfile //var/run/slapd.args

    # Load dynamic backend modules:
    # modulepath /usr/sbin/openldap
    # moduleload back_bdb.la
    # moduleload back_ldap.la
    # moduleload back_ldbm.la
    # moduleload back_passwd.la
    # moduleload back_shell.la


    # Sample security restrictions
    # Require integrity protection (prevent hijacking)
    # Require 112-bit (3DES or better) encryption for updates
    # Require 63-bit encryption for simple bind
    # security ssf=1 update_ssf=112 simple_bind=64


    database ldbm
    suffix "dc=bahadoer,dc=nl"
    rootdn "cn=manager,dc=bahadoer,dc=nl"
    #HOST 192.168.1.1
    #BASE dc=bahadoer,dc=nl
    # Cleartext passwords, especially for the rootdn, should
    # be avoided. See slappasswd(8) and slapd.conf(5) for details.
    # Use of strong authentication encouraged.
    rootpw secret


    # The database directory MUST exist prior to running slapd AND
    # should only be accessible by the slapd and slap tools.
    # Mode 700 recommended.
    directory /var/lib/ldap/bahadoer.nl

    # Indices to maintain for this database
    index objectClass eq,pres
    index ou,cn,mail,surname,givenname eq,pres,sub
    index uidNumber,gidNumber,loginShell eq,pres
    index uid,memberUid eq,pres,sub
    index nisMapName,nisMapEntry eq,pres,sub

    # Replicas of this database
    #replogfile /var/lib/ldap/openldap-master-replog
    replica host=ldap-1.example.com:389 tls=yes
    bindmethod=sasl saslmech=GSSAPI
    authcId=host/ldap-master.bahadoer.nl@bahadoer.nl
  10. #6
  11. Psycho Canadian
    Devshed Demi-God (4500 - 4999 posts)

    Join Date
    Jan 2001
    Location
    Canada
    Posts
    4,846
    Rep Power
    635
    file looks fine perhaps winmin doesn't have permission?
  12. #7
  13. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Sep 2003
    Posts
    254
    Rep Power
    12
    Sorry i don't get it winmin?? do you mean windows admin (active directory) or webmin. How can i give it the right permissions or do you have a good link where i can find the info??
  14. #8
  15. Psycho Canadian
    Devshed Demi-God (4500 - 4999 posts)

    Join Date
    Jan 2001
    Location
    Canada
    Posts
    4,846
    Rep Power
    635
    Sorry I ment webmin , I haven't used webmin in forever but from what I remember you can set what each modular can access or something like that, but I might be thinking of something else.
    Perhaps asking in the linux forum? or maybe on the webmin site? Sorry hope you find the answer.
  16. #9
  17. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Sep 2003
    Posts
    254
    Rep Power
    12
    Thanks Viper_SB for all your help.

IMN logo majestic logo threadwatch logo seochat tools logo