[Date Prev][Date Next]
Re: Invalid Credentials Error
We used to run 2.0, but are now upgrading to 2.1.21. We first slapcatted
the directory to a file, then tried moved over the old config files,
replaced the old schema with 2.1's schema, changed the ldbm to bdb in
the config file then ran:
slapadd -l /root/dump_new -f slapd.conf -c
The old dump is then imported (what appears to be successfully). I am
able to slapcat the directory at this point to confirm that the slapadd
The problem is that when I run ldapsearch (the exact same command i run
on our old server sucessfully), i get a :
"ldap_bind: Invalid credentials (49)" error.
Im binding as manager, which is in the directory (i saw it in the
slapcat) and in the slapd.conf file. The dn and ssha hashed password
listed for Manager slapd.conf is exactly the same as the old directory.
Here is the compile flag for both the old and new directory:
--enable-multimaster --with-cyrus-sasl --with-tls
SASL is installed.
Here is the ldapsearch command I used:
ldapsearch -d10 -h localhost -LLL -b
"ou=publicLists,dc=organization,dc=com" -s sub -x -D
"cn=Manager,ou=software,dc=organization,dc=com" -W "objectclass=*"
Here is slapd.conf:
access to dn.base="" by * none
access to * by self read
by * auth
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd/tools. Mode 700 recommended.
# Indices to maintain
index default pres,eq
# TLS / SSL
Try your bind with option '-x' to force a simple bind.
The From: and Reply-To: addresses are internal news2mail gateway addresses.
Reply to the list or to Christian Pohl <email@example.com>