[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Are my ldapadd and ldapsearch accessing the DB ?

To: Pohl@secaron.de
Subject: Re: Are my ldapadd and ldapsearch accessing the DB ?
From: "dyood ." <dyood@hotmail.com>
Date: Fri, 12 Jul 2002 11:40:30 -0700
Cc: OpenLDAP-software@OpenLDAP.org, owner-openldap-software@OpenLDAP.org

Hi again..here is some more information that might be of help.

After installing and setting up the openldap server, I ran a application program (Directory.java) that creates actor objects and registers them (their actor ids and actor attributes) at the ldap server. The error message I get is that the attributes are not being added to the ldap server. The exact error message is as below ______________________________________________________________________ Directory: AddActor Error : netscape.ldap.LDAPReferralException: referral (9); Referral: ldap://oops.i.did.it.again; Partial results and referral received ______________________________________________________________________

I have re-installed the Berkeley DB several times and the same goes with the openldap software. Each time following the respective quick start guides to the letter !! But with this referral error, I'm quite lost. I can't figure out where to start to look from coz all I want is a stand alone ldap server and thatz what I have (I think) specified in the slapd.conf file.

So, even if anybody can hint/suggest where the possible error might be, I can atleast explore all possibilities. Right now, I don't know where to begin with. So, please let me know .... would be pretty grateful.

herez my slapd.conf file once again : ______________________________________________________________________ # $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.8.8.7 2001/09/27 20:00:31 kurt Exp $ # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # include /extra/mayur0/sw/pub/openldap/etc/openldap/schema/core.schema include /extra/mayur0/sw/pub/openldap/etc/openldap/schema/local.schema schemacheck off # Do not enable referrals until AFTER you have a working directory # service AND an understanding of referrals. referral ldap://oops.i.did.it.again pidfile /extra/mayur0/sw/pub/openldap/var/slapd.pid argsfile /extra/mayur0/sw/pub/openldap/var/slapd.args # Load dynamic backend modules: # modulepath /extra/mayur0/sw/pub/openldap/libexec/openldap # moduleload back_ldap.la # moduleload back_ldbm.la # moduleload back_passwd.la # moduleload back_shell.la # # Sample Access Control # Allow read access of root DSE # Allow self write access # Allow authenticated users read access # Allow anonymous users to authenticate # #access to dn="" by * read #access to * # by self write # by users read # by anonymous auth # # if no access controls are present, the default is: # Allow read by all # # rootdn can always write! ####################################################################### # ldbm database definitions ####################################################################### database ldbm suffix "o=dsm.ics.uci.edu, c=US" # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd/tools. Mode 700 recommended. directory /extra/mayur0/sw/pub/bDB # Cache Size cachesize 100000 dbcachesize 1000000 # Indices to maintain index default pres,eq #index objectClass # Disable DB sync dbcacheNoWsync rootdn "cn=Manager, o=dsm.ics.uci.edu, c=US" # Cleartext passwords, especially for the rootdn, should # be avoid. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw "secret" ______________________________________________________________________

thanks a lot again,
~suraj

----Original Message Follows----
From: "Christian W Pohl" <Pohl@secaron.de>
To: "dyood ." <dyood@hotmail.com>
CC: OpenLDAP-software@OpenLDAP.org, owner-openldap-software@OpenLDAP.org
Subject: Re: Are my ldapadd and ldapsearch accessing the DB ?
Date: Fri, 12 Jul 2002 08:28:54 +0200

Hi,

what is your slapd.config? especially the section 'referral'?
have you added also the complete suffix?

Kind regards,

Chris

--
Christian Pohl
Secaron AG

"dyood ." <dyood@hotmail.com>
Sent by: owner-openldap-software@OpenLDAP.org
12.07.2002 00:52


        To:     OpenLDAP-software@OpenLDAP.org
        cc:
        Subject:        Are my ldapadd and ldapsearch accessing the DB ?


Hi Folks,

this is one more LDAP newbie trying to get a directory service working. I
started with installing a Berkeley Sleepycat (ldbm) database and later
installed the latest version of the openldap server.

As far as I can gather, I have got the ldap server running on our research

machine listening to port 3089 (with command "./slapd "ldap://:3089";)

I then continued with the "Add initial entries to your directory" step in
the openldap quickstart guide. The ldif file is as follow:
___________________________
dn: o=dsm.ics.uci.edu,c=US
objectclass: organization
o: dsm.ics.uci.edu
dc: dsm.ics.uci.edu

dn: cn=Manager,o=dsm.ics.uci.edu,c=US
objectclass: organizationalRole
cn: Manager
___________________________

Issued the command:
___________________________
./ldapadd -h agastya.ics.uci.edu -p 3089 -x -D
"cn=Manager,o=dsm.ics.uci.edu,c=US" -W -f composeldif.ldif
___________________________


and got the results:
___________________________
Enter LDAP Password:
adding new entry "o=dsm.ics.uci.edu,c=US"
ldap_add: Referral

ldif_record() = 10
___________________________

At this moment, I'm not sure from the message if the add has gone
right. Nor do I understand what "ldap_add: Referral" means. So, I issued a

ldapsearch command:
___________________________
./ldapsearch -h agastya.ics.uci.edu -p 3089 -x -b 'o=dsm.ics.uci.edu,c=US'
'(objectclass=*)'
___________________________

And got to see the output:
___________________________
version: 2

#
# filter: (objectclass=*)
# requesting: ALL
#

# search result
search: 2
result: 10 Referral
ref: ldap://oops.i.did.it.again

# numResponses: 1
___________________________

My Question:
I don't see the base dn in the output. DOes that mean my install has a
problem ?

Also, I'm looking to run a single ldap server. I need no referral
setup. The ref url specified is used more as a debugging message when the
command doesn't work. What does "result: 10 Referral" mean ?!

I looked for a similar issue on the archives but found a mail that was
unanswered. Hence, this now !

thanks in advance,
~suraj

_________________________________________________________________
MSN Photos is the easiest way to share and print your photos:
http://photos.msn.com/support/worldwide.aspx


_________________________________________________________________
Send and receive Hotmail on your mobile device: http://mobile.msn.com

Follow-Ups:
- Re: Are my ldapadd and ldapsearch accessing the DB ?
  - From: Peter Marschall <peter.marschall@mayn.de>

Prev by Date: Re: Berkeley DB 4.0.14 and openldap 2.1.3
Next by Date: RE: Storing SASL secrets in the directory
Index(es):
- Chronological
- Thread