[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Re: ldapadd -> ldap_bind: Invalid credentials
Thank you for replying.
Nothing in my configuration has changed. I tried the options you and Harry Ruter suggested. The command
I have tried is:
ldapadd -x -D "cn=Manager,dc=mydom,dc=com,o=Columbus,c=US" -W -f mydom.ldif
and I stll get the error message:
ldap_bind: Invalid credentials
Best regards.
Subba Rao
sailorn@attglobal.net
2002-06-08
======= At 2002-06-07, 14:06:00 you wrote: =======
>Subba Rao wrote:
>
>
>
>the cn used in ldapadd is different than the rootdn used in your slapd.conf
>
>you should type:
>
>ldapadd -x -D "cn=Manager,dc=mydom,dc=com,o=Columbus,c=US" -W -f mydom.ldif
>
>or modify your
>rootdn "cn=Manager,dc=mydom,dc=com,o=Columbus,c=US"
>in order to have the same cn as wanted in your ldapadd
>
>
>>Hi,
>>
>>I have compiled openldap-2.0.23 with the defaults in the "configure"
>>script. After installing, I created a new password using slappasswd.
>>I have also created a test LDIF file. Now I am trying to add a record
>>to the LDIF file. When I use "ldapadd" command I get the error message:
>>
>> ldap_bind: Invalid credentials
>>
>>I searched through the archive but the solution suggested was to create
>>a new passwd and enter it into "slapd.conf". I compiled and reinstalled
>>openldap and the same problem persists.
>>
>>What did I miss here? Could someone please let me know what I need to
>>do to get this working?
>>
>>Thank you in advance.
>>
>>Subba Rao
>>sailorn@attglobal.net
>>
>>=====> slappasswd
>>root@myhost:/usr/local/etc# slappasswd
>>New password:
>>Re-enter new password:
>>{SSHA}kQPZKfiICWXEaMQW7sULANX4uX2c2j52
>>
>>=====> slapd.conf
>># $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.8.8.7 2001/09/27 20:00:31 kur
>>t Exp $
>>#
>># See slapd.conf(5) for details on configuration options.
>># This file should NOT be world readable.
>>#
>>include /usr/local/etc/openldap/schema/core.schema
>>
>># Define global ACLs to disable default read access.
>>
>># Do not enable referrals until AFTER you have a working directory
>># service AND an understanding of referrals.
>>#referral ldap://root.openldap.org
>>
>>pidfile /usr/local/var/slapd.pid
>>argsfile /usr/local/var/slapd.args
>>
>># Load dynamic backend modules:
>># modulepath /usr/local/libexec/openldap
>># moduleload back_ldap.la
>># moduleload back_ldbm.la
>># moduleload back_passwd.la
>># moduleload back_shell.la
>>
>>#
>># Sample Access Control
>># Allow read access of root DSE
>># Allow self write access
>># Allow authenticated users read access
>># Allow anonymous users to authenticate
>>#
>>#access to dn="" by * read
>>#access to *
>># by self write
>># by users read
>># by anonymous auth
>>#
>># if no access controls are present, the default is:
>># Allow read by all
>>#
>># rootdn can always write!
>>
>>#######################################################################
>># ldbm database definitions
>>#######################################################################
>>
>>database ldbm
>>suffix "dc=mydom,dc=com"
>>#suffix "o=My Organization Name,c=US"
>>rootdn "cn=Manager,dc=mydom,dc=com,o=Columbus,c=US"
>>#rootdn "cn=Manager,o=Columbus,c=US"
>># Cleartext passwords, especially for the rootdn, should
>># be avoid. See slappasswd(8) and slapd.conf(5) for details.
>># Use of strong authentication encouraged.
>>rootpw {SSHA}kQPZKfiICWXEaMQW7sULANX4uX2c2j52
>># The database directory MUST exist prior to running slapd AND
>># should only be accessible by the slapd/tools. Mode 700 recommended.
>>directory /usr/local/var/openldap-ldbm
>># Indices to maintain
>>index objectClass eq
>>
>>
>>
>>
>>
>>=====> test.ldif
>>bjectclass: dcObject
>>objectclass: organization
>>o: Independent Services
>>dc: mydom
>>
>>dn: cn:Manager,dc=mydom,dc=com
>>objectclass: organizationalRole
>>cn: Manager
>>
>>
>>
>>
>>
>>=====> ldapadd
>>root@myhost:/usr/local/etc# ldapadd -x -D "cn=Manager,dc=mydom,dc=com" -W -f mydom.ldif
>>Enter LDAP Password:
>>ldap_bind: Invalid credentials
>>root@myhost:/usr/local/etc#
>>
>>
>>
>>
= = = = = = = = = = = = = = = = = = = =