Ldap_cachemgr Error Unable To Refresh Profile
Contents |
server project."
Ldaplist Session Error No Available Conn
solaris 10 SSL connections Date: Thu, 16 Feb libsldap: makeconnection: failed to open connection 2006 14:47:57 -0800 (PST) --- George Holbert
Error: Unable To Refresh Profile::session Error No Available Conn
ldap name service over SSL, have you tried that yet on the Solaris 10 yea I tried, it doesn't work. libsldap: could not remove from servers list My ldap_client_file: # # Do not edit this file manually; your changes will be lost.Please use ldapclient (1M) instead. # NS_LDAP_FILE_VERSION= 2.0 NS_LDAP_SERVERS= cnyitlin02 NS_LDAP_SEARCH_BASEDN= dc=composers,dc=company,dc=com NS_LDAP_AUTH= simple NS_LDAP_SEARCH_REF= TRUE NS_LDAP_SEARCH_SCOPE= one NS_LDAP_SEARCH_TIME= 30 NS_LDAP_CACHETTL= 43200 NS_LDAP_PROFILE= default NS_LDAP_CREDENTIAL_LEVEL= proxy error: unable to update from profile NS_LDAP_SERVICE_SEARCH_DESC= passwd: ou=People,dc=composers,dc=company,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= group: ou=group,dc=composers,dc=company,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= shadow: ou=People,dc=composers,dc=company,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= netgroup: ou=netgroup,dc=composers,dc=company,dc=com?one NS_LDAP_BIND_TIME= 2 now, that works: -bash-3.00# ldaplist dn: cn=Directory Administrators, dc=composers,dc=caxton,dc=com dn: ou=People, dc=composers,dc=caxton,dc=com dn: ou=profile,dc=composers,dc=caxton,dc=com dn: ou=Groups, dc=composers,dc=caxton,dc=com but once I change NS_LDAP_AUTH= to tls:simple and restart cachemgr, no more: -bash-3.00# ldaplist ldaplist: Object not found (Session error no available conn. ) from the messages file: Feb 16 17:19:12 unknown ldap_cachemgr[1443]: [ID 293258 daemon.warning] libsldap: Status: 81 Mesg: openConnection: simple bind failed - Can't contact LDAP server Feb 16 17:19:12 unknown ldap_cachemgr[1443]: [ID 292100 daemon.warning] libsldap: could not remove cnyitlin02 from servers list Feb 16 17:19:12 unknown ldap_cachemgr[1443]: [ID 293258 daemon.warning] libsldap: Status: 7 Mesg: Session error no available conn. Feb 16 17:19:12 unknown ldap_cachemgr[1443
Search Username Password Remember Me? Register Lost Password? facebook google twitter rss Free Web Developer Tools Advanced Search Forum Databases
Libsldap Status 2 Mesg Unable To Load Configuration Var Ldap Ldap_client_file
LDAP Programming problem with tls:simple on solaris9 Thread: problem with tls:simple on solaris9 Share This Thread Tweet This + 1 this Post To Linkedin Subscribe to this Thread Subscribe to This Thread November 19th, 2004,01:48 AM #1 No Profile Picture mariner View Profile View Forum Posts Registered User Devshed Newbie (0 https://www.redhat.com/archives/fedora-directory-users/2006-February/msg00142.html - 499 posts) Join Date Nov 2004 Posts 1 Rep Power 0 problem with tls:simple on solaris9 Hi all, I have a Linux Server running Openldap 2.2.6. There are a few Linux clients which connect over Port 636 to the Server. They all use SSL for authentification with the CA Cert file cacert.pem, http://forums.devshed.com/ldap-programming-76/tls-simple-solaris9-203264.html which I put into /etc/ssl/certs/. They all work fine. With the sun solaris 9 Clients I have problems. They work fine with the authetification method simple. But they should work with tls:simple, so: 1. I used Netscape to connect to the server on Port 636 to receive the two ".db" files cert7.db and key3.db. I put them into the standart Path /var/ldap/. I also put the file cacert.pem which the Linux clients use into this directory. 2. Then I modified the ldapclient configuration to use tls:simple: # ldapclient mod -a authenticationMethod=tls:simple the configuration after: # ldapclient list NS_LDAP_FILE_VERSION= 2.0 NS_LDAP_BINDDN= cn=proxyagent,ou=Profile,ou=unix,dc=ch,dc=abb,dc=com NS_LDAP_BINDPASSWD= xx The crypted password :) xx NS_LDAP_SERVERS= 10.41.80.58, 10.41.14.83 NS_LDAP_SEARCH_BASEDN= ou=unix,dc=ch,dc=abb,dc=com NS_LDAP_AUTH= tls:simple NS_LDAP_SEARCH_REF= FALSE NS_LDAP_CREDENTIAL_LEVEL= proxy NS_LDAP_SERVICE_SEARCH_DESC= passswd:ou=People,ou=unix,dc=ch,dc=abb,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= group:ou=Group,ou=unix,dc=ch,dc=abb,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= user_attr:ou=People,ou=unix,dc=ch,dc=abb,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= audit_user:ou=People,ou=unix,dc=ch,dc=abb,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= auto_master:ou=auto.master,ou=Mounts,ou=unix,dc=ch,dc=abb,dc=com?one 3. I restarted the ldapclient: #/etc/init.d/ldap.client stop #/etc/init.d/ldap.client start That action gave the follow lines in the log Files: (To explain: The LDAP master is ch-u-dwlnx0002.ch.abb.com and has the IP 10.41.80.58) - /var/adm/message
known simply as Solaris, is a Unix-based operating system introduced by Sun Microsystems. The Solaris OS is now owned by Oracle. Search Forums Show Threads http://www.unix.com/solaris/136344-dsee-6-3-1-tls-simple.html Show Posts Tag Search Advanced Search Unanswered Threads Find All Thanked Posts Go https://groups.google.com/d/topic/comp.unix.solaris/V7f7StRFujg to Page... learn linux and unix commands - unix shell scripting DSEE 6.3.1 with TLS:simple Solaris Page 1 of 2 1 2 > Thread Tools Search this Thread Display Modes #1 05-14-2010 niyazi Registered User Join Date: Apr 2010 Last unable to Activity: 15 June 2012, 4:05 AM EDT Posts: 27 Thanks: 0 Thanked 2 Times in 2 Posts DSEE 6.3.1 with TLS:simple Hello guys, I have been trying to set up my DSEE 6.3 on Solaris 10 using proxy with tls:simple authentication. I follow all the steps mentioned in the Installation Guide on Sun's site but there is a problem with ldapclient init when unable to refresh I use hostname instead of IP address in the Default Server List. Here is the config for default profile : 1 Domain to serve : test.ldap 2 Base DN to setup : dc=test,dc=ldap 3 Profile name to create : default 4 Default Server List : pluto 5 Preferred Server List : pluto 6 Default Search Scope : one 7 Credential Level : proxy 8 Authentication Method : tls:simple 9 Enable Follow Referrals : FALSE 10 iDS Time Limit : 11 iDS Size Limit : 12 Enable crypt password storage : TRUE 13 Service Auth Method pam_ldap : 14 Service Auth Method keyserv : 15 Service Auth Method passwd-cmd: 16 Search Time Limit : 30 17 Profile Time to Live : 43200 18 Bind Limit : 10 19 Enable shadow update : FALSE ldapsearch did not work before I installed the server certificate on the client machine using certutil. after certificate is ok, then ldapearch works fine over secure port. I initialize the Solaris 10 client with the following command : ldapclient -v init -a proxypassword=password -a proxydn=cn=smsproxy,ou=profile,dc=test,dc=ldap -a profilename=default -a domainname=test.ldap 10.1.1.29 In ldapclien manual it says when usi
GoogleВойтиСкрытые поляПоиск групп или сообщений