[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: need to recover slapd password and upgrade openldap

To: dhyatt@wustl.edu
Subject: Re: need to recover slapd password and upgrade openldap
From: Aaron Richton <richton@nbcs.rutgers.edu>
Date: Sun, 24 Jul 2016 22:15:38 -0400 (EDT)
Cc: openldap-technical@openldap.org
In-reply-to: <869b5024-2266-4d85-b66d-ccb9803bd0b6@dsgmail.wustl.edu>
References: <869b5024-2266-4d85-b66d-ccb9803bd0b6@dsgmail.wustl.edu>
User-agent: Alpine 2.02 (SOC 1266 2009-07-14)

On Fri, 22 Jul 2016, Dan Hyatt wrote:

My admin openLDAP 2.2 password became corrupt in the last week and I cannot

[...]

I found some instructions which seem simple risky and no backout strategy.Simply running
http://techiezone.rottigni.net/2011/12/change-root-dn-password-on-openldap/

That link (apparently from 2011) doesn't apply to your software from 2003.There's no back-config in OpenLDAP 2.2. So don't try that...


[...]

Having the LDAP on two separate hyper visors (with local disks) to avoid thestorage/authentication chicken/egg
Is there a better upgrade plan

Are you saying that your one and only LDAP server uses itself for its ownA&A?


[...]

I have the log files, is there a way to backout to last week without theadmin password (which became corrupt last week).

I'm not sure what you're referring to by "log files." The general-caseOpenLDAP backup tool is slapcat(8). Hopefully you have been running itroutinely. The resulting LDIF can be easily inspected; if you have enoughbackups, you might even be able to find one without corruption.

Follow-Ups:
- Re: need to recover slapd password and upgrade openldap
  - From: Dan Hyatt <dhyatt@dsgmail.wustl.edu>

References:
- need to recover slapd password and upgrade openldap
  - From: Dan Hyatt <dhyatt@dsgmail.wustl.edu>

Prev by Date: RE: openldap 2.4.44 + ITS 8432 patch still infinitely replicates
Next by Date: Re: need to recover slapd password and upgrade openldap
Index(es):
- Chronological
- Thread