[Date Prev][Date Next]
Re: issue w/ LDAP that I have encountered
Thanks for your reply. The only reason the db is expendable is because
I'm setting it up right now, so it won't be expendable once it's
populated w/ LDAP data. The reason I have chosen an SQL-based solution
is because we are planning on integrating all of the data in LDAP ( user
account info, user organizational data, DNS records, DHCP, etc. ) w/
ticket-tracking and other management software, and we have decided that
an SQL solution offers us the best interoperability as well as the
widest range of choices should we need to move to a different DB later on.
I appreciate the tip on using the Heimdal implementation. Should I
encounter any issues in my initial testing, I will try Heimdal out.
However, right now I'm just trying to get things working, and if I have
time ( before my deadline, which is creeping inexorably closer ) I will
do performance testing and tuning.
"As a rule, dictatorships guarantee safe streets and
terror of the doorbell. In democracy the streets
may be unsafe after dark, but the most likely visitor
in the early hours will be the milkman."
-- Adam Michnik
Quanah Gibson-Mount wrote:
--On Thursday, July 06, 2006 1:06 PM -0500 "Derek R."
I am setting up OpenLDAP w/ the back-sql ( using MySQL ) db module and
GSSAPI authentication. I had the authentication working fine, as
the SQL database created ( via the scripts included w/ the
openldap-servers-sql RPM ) and everything seemed to be fine, except
when I submitted any queries ( for example :
ldapsearch -h ldap.ui.tlc2.uh.edu -p 389 -D "uid=ldap,cn=gssapi,cn=auth"
), then I would get a no such object error ( something similar, I can't
find it in my terminals now, it's been buried under mounds of strace and
slapd -d1 output ). So I started testing out various parameters for
queries and selects and whatnot in slapd.conf ( which, by the way, is
please let me know if you need any more information. Also, I am more
than willing to wipe out and recreate the database in MySQL ( what's the
simplest way to do it w/out damaging anything else? ) if that's what
needs to be done.
Thanks in advance...
If your database is disposable, why are you using MySQL? Why not use
a high-performance backend like bdb or hdb?
Also, I'll note that the MIT kerberos libraries are magnitudes slower
than the Heimdal kerberos libraries, so for the server side, I highly
suggest using the Heimdal libs.
Principal Software Developer
ITS/Shared Application Services
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
org:University of Houston;Texas Learning and Computation Center
adr:;;218 Philip G. Hoffman Hall;Houston;Texas;77204-3058;United States of America
title:Linux Cluster Administrator