If you're having trouble using OpenLDAP, get onto the OpenLDAP-Software mailing list.
Browse the list archives at http://www.openldap.org/lists/
Chances are the problem has been solved and explained in detail many times before.
More often than not, an error is caused by a configuration problem or a misunderstanding of what you are trying to implement and/or achieve.
Sometimes you may encounter an actual OpenLDAP bug, in which case please visit our Issue Tracking system http://www.openldap.org/its/ and report it there, providing as much information as possible.
Note: Our Issue Tracking system is NOT for OpenLDAP Support, please join our mailing Lists: http://www.openldap.org/lists/ for that
We will now attempt to discuss common user errors
The following checklist can help track down your problem. Please try to use if before posting to the list, or in the rare circumstances of reporting a bug.
- Use the slaptest tool to verify configurations before starting slapd
- Verify that slapd is listening to the specified port(s) (389 and 636, generally) before trying the ldapsearch
- Can you issue an ldapsearch?
- If not, have you enabled complex ACLs without fully understanding them?
- Do you have a system wide LDAP setting pointing to the wrong LDAP Directory?
- Are you using TLS?
- Have your certificates expired?
The OpenLDAP Project only supports OpenLDAP software.
You may however seek commercial support (http://www.openldap.org/support/) or join the general LDAP forum for non-commercial discussions and information relating to LDAP at: http://www.umich.edu/~dirsvcs/ldap/mailinglist.html
- Mailing Lists: http://www.openldap.org/lists/
- Project: http://www.openldap.org/project/
- Issue Tracking: http://www.openldap.org/its/
After reading through the above sections and before e-mailing the OpenLDAP lists, you might want to try out some of the following to track down the cause of your problems:
- Loglevel 256 is generally a good first loglevel to try for getting information useful to list members on issues
- Running slapd -d -1 can often track down fairly simple issues, such as missing schemas and incorrect file permissions for the slapd user to things like certs
The firms listed at http://www.openldap.org/support/ offer technical support services catering to OpenLDAP community.
The listing of any given firm should not be viewed as an endorsement or recommendation of any kind, nor as otherwise indicating there exists a business relationship or an affiliation between any listed firm and the OpenLDAP Foundation or the OpenLDAP Project or its contributors.