[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Authenticating against slapd installed from package

* Dieter Kluenter <dieter@dkluenter.de> [2006-07-20 17:46 +0200]:
> Marc Tardif <marc@interunion.ca> writes:
> > I have installed OpenLDAP 2.2.26 from package on Ubuntu 6.06 LTS. The
> > postinst script prompts for a password to create an admin user. However,
> > when I try to run the ldapsearch command as the admin with that password, I
> > get the following error message:
> >
> >   $ ldapsearch -x -w password -D "cn=admin,dc=nodomain" '(objectclass=*)'
> >   ldap_bind: Invalid credentials (49)
> >
> > It seems that the binddn is listed on the database. Here is the relevant
> > output from the slapcat command:
> I do hope that binddn is not rootdn, otherwise it would be a rather
> bad idea.
> [...]

There is no rootdn specified in slapd.conf. The only authentication related
information in that file seems to be the access control lists provided in
my original message.

> > So, any ideas what I might be doing wrong?
> The password is stored as crypt hash, is slapd linked with libcrypt?

Yes and here is the complete output of the ldd command:

  $ ldd `which slapd`
  libldap_r-2.2.so.7 => /usr/lib/libldap_r-2.2.so.7 (0x00002aaaaabc2000)
  liblber-2.2.so.7 => /usr/lib/liblber-2.2.so.7 (0x00002aaaaad02000)
  libiodbc.so.2 => /usr/lib/libiodbc.so.2 (0x00002aaaaae11000)
  libslp.so.1 => /usr/lib/libslp.so.1 (0x00002aaaaaf5c000)
  libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x00002aaaab06e000)
  libssl.so.0.9.8 => /usr/lib/libssl.so.0.9.8 (0x00002aaaab185000)
  libcrypto.so.0.9.8 => /usr/lib/libcrypto.so.0.9.8 (0x00002aaaab2cc000)
  libcrypt.so.1 => /lib/libcrypt.so.1 (0x00002aaaab53d000)
  libresolv.so.2 => /lib/libresolv.so.2 (0x00002aaaab670000)
  libpthread.so.0 => /lib/libpthread.so.0 (0x00002aaaab785000)
  libltdl.so.3 => /usr/lib/libltdl.so.3 (0x00002aaaab89b000)
  libwrap.so.0 => /lib/libwrap.so.0 (0x00002aaaab9a2000)
  libc.so.6 => /lib/libc.so.6 (0x00002aaaabaab000)
  libiodbcinst.so.2 => /usr/lib/libiodbcinst.so.2 (0x00002aaaabce5000)
  libdl.so.2 => /lib/libdl.so.2 (0x00002aaaabdf6000)
  libnsl.so.1 => /lib/libnsl.so.1 (0x00002aaaabef8000)
  libz.so.1 => /usr/lib/libz.so.1 (0x00002aaaac00f000)
  /lib64/ld-linux-x86-64.so.2 (0x00002aaaaaaab000)

Marc Tardif <marc@interunion.ca>
Freenode: cr3, Jabber: cr3@jabber.org
1024D/72679CAD 09A9 D871 F7C4 A18F AC08  674D 2B73 740C 7267 9CAD