Re: issue w/ LDAP that I have encountered

["Derek R." <derekr@tlc2.uh.edu>]

Quanah,
Thanks for your reply.  The only reason the db is expendable is because 
I'm setting it up right now, so it won't be expendable once it's 
populated w/ LDAP data.  The reason I have chosen an SQL-based solution 
is because we are planning on integrating all of the data in LDAP ( user 
account info, user organizational data, DNS records, DHCP, etc. ) w/ 
ticket-tracking and other management software, and we have decided that 
an SQL solution offers us the best interoperability as well as the 
widest range of choices should we need to move to a different DB later on.
I appreciate the tip on using the Heimdal implementation.  Should I 
encounter any issues in my initial testing, I will try Heimdal out.  
However, right now I'm just trying to get things working, and if I have 
time ( before my deadline, which is creeping inexorably closer ) I will 
do performance testing and tuning.
Thanks,
Derek R.

---
derek.richardson@ieee.org
derekr42@gmail.com
derekr@tlc2.uh.edu
dmrichar@uh.edu
drichardson4@uh.edu
---
"As a rule, dictatorships guarantee safe streets and
terror of the doorbell. In democracy the streets
may be unsafe after dark, but the most likely visitor
in the early hours will be the milkman."
-- Adam Michnik



Quanah Gibson-Mount wrote:
> --On Thursday, July 06, 2006 1:06 PM -0500 "Derek R." 
> <derekr@tlc2.uh.edu> wrote:
>
> > All,
> > I am setting up OpenLDAP w/ the back-sql ( using MySQL ) db module and
> > GSSAPI authentication.  I had the authentication working fine, as 
> > well as
> > the SQL database created ( via the scripts included w/ the
> > openldap-servers-sql RPM )  and everything seemed to be fine, except 
> > that
> > when I submitted any queries ( for example :
> > ldapsearch -h ldap.ui.tlc2.uh.edu -p 389 -D "uid=ldap,cn=gssapi,cn=auth"
> > -W -b"dc=tlc2,dc=uh,dc=edu"
> > ), then I would get a no such object error ( something similar, I can't
> > find it in my terminals now, it's been buried under mounds of strace and
> > slapd -d1 output ).  So I started testing out various parameters for
> > queries and selects and whatnot in slapd.conf ( which, by the way, is
> > here :
>
> > please let me know if you need any more information.  Also, I am more
> > than willing to wipe out and recreate the database in MySQL ( what's the
> > simplest way to do it w/out damaging anything else? ) if that's what
> > needs to be done.
> > Thanks in advance...
> > Regards,
> > Derek R.
>
> If your database is disposable, why are you using MySQL?  Why not use 
> a high-performance backend like bdb or hdb?
>
> Also, I'll note that the MIT kerberos libraries are magnitudes slower 
> than the Heimdal kerberos libraries, so for the server side, I highly 
> suggest using the Heimdal libs.
>
> --Quanah
>
> --
> Quanah Gibson-Mount
> Principal Software Developer
> ITS/Shared Application Services
> Stanford University
> GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
begin:vcard
fn:Derek Richardson
n:Richardson;Derek
org:University of Houston;Texas Learning and Computation Center
adr:;;218 Philip G. Hoffman Hall;Houston;Texas;77204-3058;United States of America
email;internet:derekr@tlc2.uh.edu
title:Linux Cluster Administrator
tel;work:7137433361
tel;fax:7137433376 
tel;home:7138191303
tel;cell:7138191303
x-mozilla-html:TRUE
url:http://www.tlc2.uh.edu
version:2.1
end:vcard