[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Problems using OpenLPAP for authentification of users: Client library issues STARTTLS but TLS is not configured
- To: openldap-technical@openldap.org
- Subject: Problems using OpenLPAP for authentification of users: Client library issues STARTTLS but TLS is not configured
- From: JÃrg Spilker <js@jetsys.de>
- Date: Thu, 10 Jul 2008 09:58:30 +0200
- User-agent: Thunderbird 2.0.0.14 (Windows/20080421)
Hi,
well, i donÂt know what iÂm doing wrong. I just want to authenticate
unix and windows users against OpenLDAP Database. I followed some howtos
to setup openldap, winbind etc. and nearly everything seems just fine.
But authenticating unix users finally doesnÂt work. IÂve attached the
syslog output. START TLS extension not supportet. This is true, as i
havenÂt configured OpenLPAP for TLS. But my LDAP client configuration
doesnÂt specify an LDAPS URL. So whatÂs going wrong?
Greeting, JÃrg
#
# This is the configuration file for the LDAP nameservice
# switch library, the LDAP PAM module and the shadow package.
#
# Your LDAP server. Must be resolvable without using LDAP.
URI ldap://localhost
# The distinguished name of the search base.
base dc=jetsys,dc=de
# The LDAP version to use (defaults to 3
# if supported by client library)
ldap_version 3
# Don't try forever if the LDAP server is not reacheable
bind_policy soft
# The distinguished name to bind to the server with.
# Optional: default is to bind anonymously.
binddn cn=Manager,dc=jetsys,dc=de
# The credentials to bind with.
# Optional: default is no credential.
bindpw XXXXXXXXX
# The distinguished name to bind to the server with
# if the effective user ID is root. Password is
# stored in /etc/ldap.secret (mode 600)
rootbinddn cn=Manager,dc=jetsys,dc=de
Jul 9 07:32:26 xdaolin slapd[2241]: conn=702 fd=23 ACCEPT from IP=127.0.0.1:15332 (IP=0.0.0.0:389)
Jul 9 07:32:26 xdaolin slapd[2241]: conn=702 op=0 EXT oid=1.3.6.1.4.1.1466.20037
Jul 9 07:32:26 xdaolin slapd[2241]: conn=702 op=0 do_extended: unsupported operation "1.3.6.1.4.1.1466.20037"
Jul 9 07:32:26 xdaolin slapd[2241]: conn=702 op=0 RESULT tag=120 err=2 text=unsupported extended operation
Jul 9 07:32:26 xdaolin slapd[2241]: conn=702 op=1 UNBIND
Jul 9 07:32:26 xdaolin slapd[2241]: conn=702 fd=23 closed
Jul 9 07:32:26 xdaolin slapd[2241]: conn=703 fd=23 ACCEPT from IP=127.0.0.1:15333 (IP=0.0.0.0:389)
Jul 9 07:32:26 xdaolin slapd[2241]: conn=703 op=0 EXT oid=1.3.6.1.4.1.1466.20037
Jul 9 07:32:26 xdaolin slapd[2241]: conn=703 op=0 do_extended: unsupported operation "1.3.6.1.4.1.1466.20037"
Jul 9 07:32:26 xdaolin slapd[2241]: conn=703 op=0 RESULT tag=120 err=2 text=unsupported extended operation
Jul 9 07:32:26 xdaolin slapd[2241]: conn=703 op=1 UNBIND
Jul 9 07:32:27 xdaolin slapd[2241]: conn=703 fd=23 closed
Jul 9 07:32:27 xdaolin getent: nss_ldap: could not search LDAP server - Server is unavailable