[Date Prev][Date Next] [Chronological] [Thread] [Top]

AW: Solaris 10 Native LDAP Client TLS

To: <openldap-technical@openldap.org>
Subject: AW: Solaris 10 Native LDAP Client TLS
From: "Kick, Claus" <claus.kick@siemens.com>
Date: Thu, 20 Mar 2008 16:08:07 +0100
Content-class: urn:content-classes:message
In-reply-to: <5D7F3B4EB73FCB42A46515AC30B02B1C0B3D1B@mailnyc2.nyc.deshaw.com>
References: <BLU125-W27A02BF08F15C5B1C935BCD0050@phx.gbl> <5D7F3B4EB73FCB42A46515AC30B02B1C0B3D1B@mailnyc2.nyc.deshaw.com>
Thread-index: AciINN2UUjfIh8c5RHi4sw5OwhUi/AAuwwWgAGr7zsA=
Thread-topic: Solaris 10 Native LDAP Client TLS

 Hello,

Does nscd -g say anything different?

I found out the hard way that there are differences between the ldapsearch on Solaris 8 and Solaris 10, so it wouldn't surprise me if there were any between 9 and 10.

How did you configure sendmail to work with ldap?

Cheers,

Claus

-----Ursprüngliche Nachricht-----
Von: openldap-technical-bounces+claus.kick=siemens.com@OpenLDAP.org [mailto:openldap-technical-bounces+claus.kick=siemens.com@OpenLDAP.org] Im Auftrag von Marantz, Roy
Gesendet: Dienstag, 18. März 2008 13:05
An: farhan ahmed; openldap-technical@openldap.org
Betreff: RE: Solaris 10 Native LDAP Client TLS

Did you try turning on logging on the server to see what sendmail is
trying to do?
Did you try using ldapsearch to see if you can simulate what sendmail is
doing?  
Roy

________________________________

From: openldap-technical-bounces+roy.marantz=deshaw.com@openldap.org
[mailto:openldap-technical-bounces+roy.marantz=deshaw.com@openldap.org]
On Behalf Of farhan ahmed
Sent: Monday, March 17, 2008 9:02 AM
To: openldap-technical@openldap.org
Subject: RE: Solaris 10 Native LDAP Client TLS


Hi Guys,
 
I have done it for Solaris 10 but now I am facing problem in Solaris 9.
Please help me
 
Still no luck with LDAP native client on Solaris 9. I am getting
following message

Mar 16 02:02:59 web04 sendmail[3700]: [ID 293258 mail.warning] libsldap:
Status: 81 Mesg: openConnection: simple bind failed - Can't contact LDAP
server

But when I run /usr/lib/ldap/ldap_cachemgr -g, I get following which
shows there is no problem

cachemgr configuration:
server debug level 0
server log file "/var/ldap/cachemgr.log"
number of calls to ldapcachemgr 19

cachemgr cache data statistics:
Configuration refresh information: 
Previous refresh time: 2008/03/17 23:55:23
Next refresh time: 2008/03/18 00:55:23
Server information: 
Previous refresh time: 2008/03/17 23:55:23
Next refresh time: 2008/03/18 00:05:23
server: 203.221.221.83, status: UP
Cache data information: 
Maximum cache entries: 256
Number of cache entries: 0
 
ldapclient -vvv manual -a defaultServerList=10.10.10.10 -a
defaultSearchBase=dc=test,dc=com -a authenticationMethod=tls:simple -a
credentialLevel=proxy -a proxyDN=cn=proxyagent,ou=profile,dc=test,dc=com
-a proxyPassword=test
 
Note: Same command works for Solaris 10

I really want to use LDAP native client rather than openldap client
which is hassle to install gcc padle pam_ldap etc on 50 servers.

Please help me guys.

Thanks,

Farhan




 



________________________________

	From: farhhanahmed@hotmail.com
	To: openldap-technical@openldap.org
	Subject: Solaris 10 Native LDAP Client TLS
	Date: Fri, 14 Mar 2008 11:55:59 +0000
	
	
	Hello Guys,
	 
	
	 I am having some issues to configure LDAP Native client with
TLS. Please help me to sort out this issue
	
	LDAP Server: Linux (OpenLdap), 
	
	LDAP Client: Solaris 10 (Native Client)
	
	When I run following command to test, it works fine, 
	
	ldapsearch -v -h test -p 636 -Z -P /var/ldap/cert8.db -b
"dc=test,dc=com" -s base "objectclass=*"
	
	ldapsearch: started Fri Mar 14 18:11:57 2008
	
	ldap_init( test, 636 )
	filter pattern: objectclass=*
	returning: ALL
	filter is: (objectclass=*)
	version: 1
	dn: dc=test,dc=com
	objectClass: dcObject
	objectClass: organization
	o: test.com web site
	dc: test
	1 matches
	
	But When I run ldapclient command to initialize ldapclient, it
doesn't work, please guide me where I am doing wrong
	
	ldapclient -v manual -a defaultServerList=10.10.10.10
	-a defaultSearchBase=dc=test,dc=com 
	-a authenticationMethod=tls:simple 
	-a serviceAuthenticationMethod=pam_ldap:tls:simple 
	-a serviceAuthenticationMethod=keyserv:tls:simple 
	-a serviceAuthenticationMethod=passwd-cmd:tls:simple
	-a credentialLevel=proxy 
	-a proxyDN=cn=Manager,ou=People,dc=test,dc=com 
	-a proxyPassword=passwd
	
	After that when I run ldaplist command, I get following in
/var/adm/messages
	
	Mar 14 18:15:16 subx05-t1 nfs4cbd[1638]: [ID 293258
daemon.warning] libsldap: Status: 91 Mesg: openConnection: failed to
initialize
	TLS security (security library: bad database.)
	
	Please help me guys :) I know I am very near to get it working
	
	Thanks,
	
	Farhan 
	
	
________________________________

	at CarPoint.com.au It's simple! Sell your car for just $30
<http://a.ninemsn.com.au/b.aspx?URL=http://secure-au.imrworldwide.com/cg
i-bin/a/ci_450304/et_2/cg_801459/pi_1004813/ai_859641&_t=762955845&_r=ti
g_OCT07&_m=EXT> 


________________________________

at CarPoint.com.au It's simple! Sell your car for just $30
<http://a.ninemsn.com.au/b.aspx?URL=http%3A%2F%2Fsecure%2Dau%2Eimrworldw
ide%2Ecom%2Fcgi%2Dbin%2Fa%2Fci%5F450304%2Fet%5F2%2Fcg%5F801459%2Fpi%5F10
04813%2Fai%5F859641&_t=762955845&_r=tig_OCT07&_m=EXT>

References:
- RE: Solaris 10 Native LDAP Client TLS
  - From: farhan ahmed <farhhanahmed@hotmail.com>
- RE: Solaris 10 Native LDAP Client TLS
  - From: "Marantz, Roy" <Roy.Marantz@deshaw.com>

Prev by Date: Re: Problems creating a Samba4 LDAP Backend
Next by Date: AW: Solaris 10 Client ; Openldap 2.4 Server; supportedControl supportedsaslmechanisms
Index(es):
- Chronological
- Thread