Re: OpenLDAP static configuration

[Ali Gholami <gholami@kth.se>]

Thanks Vikas for the reply.

I removed the line to point to the "slapd.conf" and now I could run the service. But I get another error when I try to add structure of the entries using:

----
$sudo ldapadd -Q -Y EXTERNAL -H ldapi:/// -f structure.ldif:

adding new entry "dc=x,dc=y"

ldap_add: Insufficient access (50)
    additional info: no write access to parent
----

I've created the  ".ldaprc" in my home directory which defines the X590 certificates of the LDAP server and I've added the subject of the host certificated in the "slapd.conf":

----
access to *
       by dn="cn=admin,dc=x,dc=y" write
       by dn="cn=allowed host,dc=x,dc=y" read
       by * none

authz-regexp CN=ldap.biobankcloud.eu,O=BBC "cn=admin,dc=biobankcloud,dc=org"

database        bdb
       suffix         "dc=x,dc=y"
       rootdn         "cn=admin,dc=x,dc=y"
       rootpw         {SSHA}blabla...
----


IS there anything else that I should set or something broken?

Thanks
Ali

On 02/07/2014 01:09 PM, Vikas Parashar wrote:

Ali,

By default, it should start. You don't need to any change in any file. If you will see the bash script, there you can see, first it will check slapd.d then it will check slapd.conf file.

Could you please let us know, how do you have installed openldap.

On Fri, Feb 7, 2014 at 5:15 PM, Ali Gholami <gholami@kth.se> wrote:

Hi list,

I've an Ubuntu 12.04 and I'd like to install an static configraution using slapd.conf. I've created a "slapd.conf" under "/etc/ldap" where is the default directory to install OpenLDAP. But when I start my service through "sudo service slapd start " it doesn't start the service using the static configuration.

I changed the script under "/etc/init.d/slapd" so that slapd.conf will be used through "SLAPD_CONF=/etc/ldap/slapd.conf" but then the LDAP server fails to start.

Any ideas how to deploy a static configuration in Ubuntu 12.04?


Regards
Ali