[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Really confusing responses (was: Re: Can't slapadd ldif file)

To: openldap-software@OpenLDAP.org
Subject: Re: Really confusing responses (was: Re: Can't slapadd ldif file)
From: Todd Lyons <todd@mrball.net>
Date: Sun, 8 Dec 2002 11:35:08 -0800
Content-disposition: inline
In-reply-to: <3DF33DF6.5020505@ipom.com>
Organization: Progressive Linux Consultants
References: <NFBBKOAOOLGPKLIEOFLMKEPBCAAA.luca.scamoni@sys-net.it> <3DF11E18.1050206@ipom.com> <3DF12BD9.2080508@ipom.com> <20021207032631.GF9512@mrball.net> <3DF33DF6.5020505@ipom.com>
User-agent: Mutt/1.5.1i

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Phil Dibowitz wanted us to know:

>OK, ignore my last email, actually it IS important my shadow 
>information, but I was using ldapsearch without enough privilege to see it.

Repost your slapd.conf, specifically the entire access section (all
lines).

>But, eh, how do I specificy to ldapsearch I'd like to search as manager 
>- keeping in mind, I'm not (yet?) using SASL? I tried -W, and it prompts 
>me for a passwd, and I put it in, but I still dont' see crypts.

You must specify who to bind to the directory as.

ROOTDN="cn=Manager,dc=stxe,dc=com,c=US"  #Substitute whatever your
                                         #root DN is.
SEARCHBASE="dc=stxe,dc=com,c=US"  #Kept seperate from ROOTDN since it
                                  #might be defined totally different
                                  #in your slapd.conf
ldapsearch -x -D $ROOTDN -W -b $SEARCHBASE 'cn=username'

It should find and print all attributes for:
  cn=username,ou=Groups,dc=stxe,dc=com,c=US
Depending on your access lines in slapd.conf, you may be able to see
your own userPassword attribute or not and your may be able to see
others' userPassword attribute or not.  If you _can_ see others', that's
probably a bad thing.

Blue skies...			Todd
- -- 
A: No
Q: Should I quote at the end of the message?
   Linux kernel 2.4.19-16mdk   1 user,  load average: 0.01, 0.02, 0.00
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE9857sIBT1264ScBURAqM6AKDajE0Yg/QPXffDzYJpgADiyxMxFwCdF+wP
gjJqNCox4w4pJrpYYQrisKs=
=g/NN
-----END PGP SIGNATURE-----

References:
- R: Really confusing responses (was: Re: Can't slapadd ldif file)
  - From: "Luca Scamoni" <luca.scamoni@sys-net.it>
- Re: Really confusing responses (was: Re: Can't slapadd ldif file)
  - From: Phil Dibowitz <phil@ipom.com>
- Re: Really confusing responses (was: Re: Can't slapadd ldif file)
  - From: Phil Dibowitz <phil@ipom.com>
- Re: Really confusing responses (was: Re: Can't slapadd ldif file)
  - From: Todd Lyons <todd@mrball.net>
- Re: Really confusing responses (was: Re: Can't slapadd ldif file)
  - From: Phil Dibowitz <phil@ipom.com>

Prev by Date: Re: Really confusing responses (was: Re: Can't slapadd ldif file)
Next by Date: RE: ldap_sasl_interactive_bind_s: Can't contact LDAP server (81)
Index(es):
- Chronological
- Thread