[Date Prev][Date Next] [Chronological] [Thread] [Top]

Invalid Credentials



I've explored FAQ's and list Archives considerably, and actual
practical answers seem to be sparse and uninformative.

Why is LDAP balking with "Invalid Credentials"?

Some practical and pragmatic assistance would be greatly appreciated.


Here is the pertinent (I think) information:

# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#

include		/usr/local/etc/openldap/schema/core.schema
pidfile		/var/run/slapd.pid
argsfile	/var/run/slapd.args

#######################################################################
# ldbm database definitions
#######################################################################

#access to attr=userPassword
#        by self write
#        by * compare


database	ldbm
suffix		"o=Solution Design Laboratory,dc=sdl,dc=org"
rootdn		"cn=root,o=Solution Design Laboratory,dc=sdl,dc=org"
rootpw		secret
directory	/usr/local/var/openldap-ldbm
#index		objectClass	eq

results of redirecting debug output:

daemon: socket() failed errno=22 (Invalid argument)
reading config file /usr/local/etc/openldap/slapd.conf
line 5 (include		/usr/local/etc/openldap/schema/core.schema)
reading config file /usr/local/etc/openldap/schema/core.schema
*************************
[snipped for readability]
*************************
line 6 (pidfile		/var/run/slapd.pid)
line 7 (argsfile	/var/run/slapd.args)
line 18 (database	ldbm)
line 19 (suffix		"o=Solution Design Laboratory,dc=sdl,dc=org")
line 20 (rootdn		"cn=root,o=Solution Design
Laboratory,dc=sdl,dc=org")
line 21 (rootpw		secret)
line 22 (directory	/usr/local/var/openldap-ldbm)
slapd starting
daemon: conn=0 fd=9 connection from IP=192.168.1.1:2046 (IP=0.0.0.0:389)
accepted.
ber_dump: buf=0x080e5610 ptr=0x080e5610 end=0x080e563a len=42
  0000:  02 01 01 60 25 02 01 03  04 18 63 6e 3d 4d 61 6e
...`%.....cn=Man
  0010:  61 67 65 72 2c 64 63 3d  73 64 6c 2c 64 63 3d 6f
ager,dc=sdl,dc=o
  0020:  72 67 80 06 73 65 63 72  65 74                     rg..secret
ber_dump: buf=0x080e5610 ptr=0x080e5613 end=0x080e563a len=39
  0000:  60 25 02 01 03 04 18 63  6e 3d 4d 61 6e 61 67 65
`%.....cn=Manage
  0010:  72 2c 64 63 3d 73 64 6c  2c 64 63 3d 6f 72 67 80
r,dc=sdl,dc=org.
  0020:  06 73 65 63 72 65 74                               .secret
ber_dump: buf=0x080e5610 ptr=0x080e5632 end=0x080e563a len=8
  0000:  80 06 73 65 63 72 65 74                            ..secret
conn=0 op=0 BIND dn="CN=MANAGER,DC=SDL,DC=ORG" method=128
ber_flush: 14 bytes to sd 9
conn=0 op=0 RESULT tag=97 err=49 text=
conn=-1 fd=9 closed

I attempted to follow the instructions in the Quick Start, which is where
this has failed.

[1598] ldapadd -x -D "cn=Manager,dc=sdl,dc=org" -f ldifs/ken.ldif -W 2>&1
>> helpme.doc
Enter LDAP Password:
ldap_bind: Invalid credentials

So, why is ldapadd regarding my credentials as invalid?



ken.ldif contains:
dn: dc=sdl, dc=org
objectclass: dcObject
objectclass: organization
o: "Solution Design Laboratory"
dc: sdl
dn: cn=Manager,dc=sdl, dc=org
objectclass: organizationalRole
cn: Manager