[Date Prev][Date Next] [Chronological] [Thread] [Top]

Why invalid credentials

Hi all!

An LDAP newbie posting for the first time.

I can't see why I get error 49 (bad credentials) trying to run ldapadd.

My guess is it's a "sasl" thingie....

I was following the tutorial at
http://www.howtoforge.com/openldap_fedora7 but got nowhere.

The goal is to set up ldap-authentication on a net of FC 7 clients and
an FC 7 server.

Config files:


HOST lb.labbnet.ne.keryx.se
BASE dc=lb,dc=labbnet,dc=ne,dc=keryx.se


include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/nis.schema
pidfile         /var/run/openldap/slapd.pid
argsfile        /var/run/openldap/slapd.args
database        bdb

# Only three lines changed by me
suffix          "dc=lb,dc=labbnet,dc=ne,dc=keryx,dc=se"
rootdn          "uid=root,dc=lb,dc=labbnet,dc=ne,dc=keryx,dc=se"
rootpw      {CRYPT}tecdIjhx8TVq.
# Temporary password - I will change it later!

directory       /var/lib/ldap
index objectClass                       eq,pres
index ou,cn,mail,surname,givenname      eq,pres,sub
index uidNumber,gidNumber,loginShell    eq,pres
index uid,memberUid                     eq,pres,sub
index nisMapName,nisMapEntry            eq,pres,sub

Output of "/usr/bin/ldapadd -x -D
'uid=root,dc=lb,dc=labbnet,dc=ne,dc=keryx.se' -W -f /root/ibunk.ldif -d 1":

ldap_initialize( <DEFAULT> )
filter: (objectclass=*)
requesting: All userApplication attributes
# extended LDIF
# LDAPv3
# base <> with scope subtree
# filter: (objectclass=*)
# requesting: ALL

# search result
search: 2
result: 32 No such object

# numResponses: 1

Output of /usr/bin/ldapadd -x -D
'uid=root,dc=lb,dc=labbnet,dc=ne,dc=keryx.se' -W -f /root/ibunk.ldif -d 1
Enter LDAP Password: <entered correctly>
ldap_new_connection 1 1 0
ldap_connect_to_host: TCP lb.labbnet.ne.keryx.se:389
ldap_new_socket: 4
ldap_prepare_socket: 4
ldap_connect_to_host: Trying
ldap_connect_timeout: fd: 4 tm: -1 async: 0
ldap_open_defconn: successful
ber_scanf fmt ({it) ber:
ber_scanf fmt ({i) ber:
ber_flush: 62 bytes to sd 4
ldap_result ld 0x9631270 msgid 1
ldap_chkResponseList ld 0x9631270 msgid 1 all 1
ldap_chkResponseList returns ld 0x9631270 NULL
wait4msg ld 0x9631270 msgid 1 (infinite timeout)
wait4msg continue ld 0x9631270 msgid 1 all 1
** ld 0x9631270 Connections:
* host: lb.labbnet.ne.keryx.se  port: 389  (default)
  refcnt: 2  status: Connected
  last used: Thu Sep 13 17:11:22 2007

** ld 0x9631270 Outstanding Requests:
 * msgid 1,  origid 1, status InProgress
   outstanding referrals 0, parent count 0
** ld 0x9631270 Response Queue:
ldap_chkResponseList ld 0x9631270 msgid 1 all 1
ldap_chkResponseList returns ld 0x9631270 NULL
read1msg: ld 0x9631270 msgid 1 all 1
ber_get_next: tag 0x30 len 12 contents:
read1msg: ld 0x9631270 msgid 1 message type bind
ber_scanf fmt ({eaa) ber:
read1msg: ld 0x9631270 0 new referrals
read1msg:  mark request completed, ld 0x9631270 msgid 1
request done: ld 0x9631270 msgid 1
res_errno: 0, res_error: <>, res_matched: <>
ldap_free_request (origid 1, msgid 1)
ldap_free_connection 0 1
ldap_free_connection: refcnt 1
ber_scanf fmt ({iaa) ber:
ber_scanf fmt (}) ber:
ldap_bind: Invalid credentials (49)