[Fedora-directory-users] Need Help - FDS 1.0.4 - Admin Console - Details Inside - Thanks
Richard Megginson
rmeggins at redhat.com
Mon Jun 25 12:37:52 UTC 2007
Sphenis cidae wrote:
> I really need some help here.
>
> Fedora directory server works. The ldap directory is working, I can
> even authenticate the users at login using ldap authentication. I've
> imported groups and users and created new users. Everything seems nice.
>
> When I turn LDAP authentication and support on (tried in fedora7) the
> admin console stops working.
>
> "cannot logon because of an incorrect User ID, Incorrect password or
> Directory problem. java.io.InterruptedIOException: HTTP response timeout"
>
> In /opt/fedora-ds/admin-serv/logs/error i have:
> child pid 2768 exit signal segmentation fault (11)
> child pid 2769 exit signal segmentation fault (11)
> ...
> child pid 3360 exit signal segmentation fault (11)
>
> I know everyone have their own problems, and I seem to implore for
> some help, but hey, prove that you deserve to receive a guru title, at
> least from me :) just kidding. I know you're not ghandi, so i just
> appeal to your comunity spirit. Thanks.
I think this is being caused by a conflict between the Mozilla LDAP
libraries used by the Admin Server and the OpenLDAP libraries used by
the OS for nss_ldap/pam_ldap. These two libraries both implement the
client side of LDAP, but they are not binary compatible. When the Admin
Server starts, we force it to load mozldap first, because the Admin
Server must use mozldap in order for the console and other admin server
features to work. This causes those symbols like ldap_get_option(),
ldap_sasl_bind(), etc. to be defined in the process. However, if using
LDAP in the OS, if Apache needs to call nss_ldap, the nss_ldap libs will
have been compiled against OpenLDAP, and will call those functions, but
it will be using the mozldap version of those functions, and will fail
in strange ways, usually by seg. fault.
I don't know of an easy way to resolve this problem, unless it is
possible on a per-process basis to disable nss_ldap.
>
> >I have fedora directory server 1.0.4 running and I can access
> it from a windows workstation using softerra ldap
> >administrator, but when i try using the fedora admi console
> from the server i get the following error:
>
> >"cannot logon because of an incorrect User ID, Incorrect
> password or Directory problem.
> >java.io.InterruptedIOException: HTTP response timeout"
>
> >In /opt/fedora-ds/admin-serv/logs/error i have:
> >child pid 2768 exit signal segmentation fault (11)
> >child pid 2769 exit signal segmentation fault (11)
> >...
> >child pid 3360 exit signal segmentation fault (11)
>
> >I'm asking for a big help here. I'm just a newbie trying very
> hard to learn.
> >Thanks, and I hope someday I'll be able to help you too.
>
>
> ------------------------------------------------------------------------
> Com conversas em vídeo tem já hoje um bocadinho de futuro. Clique aui!
> <http://get.live.com/pt-pt/messenger/overview>
> ------------------------------------------------------------------------
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20070625/701ddb7e/attachment.bin>
More information about the Fedora-directory-users
mailing list