Andreas Mischinski wrote:
Hey, this is the result./usr/lib/mozldap/ldappasswd -D "cn=Directory Manager" -w password1 -P /etc/dirsrv/slapd-MISCHINS-WORLD//cert8.db -ZZZ -s password2 uid=admin,cn=sysaccounts,cn=etc,dc=mischins,dc=world ldap_start_tls_s failed: (Can't connect to the LDAP server) I `ve installed fedora core 9 (fresh install) and then selected the ipaserver package over the package manager. From the commandline I started ipa-server-install and received the only error with setting the admin password. MISCHINS.WORLD is a test domain in our environment. We want to migrate from pure OpenLdap to something like fedora directory server in combination with Active Director, since many applications are designed for Active Directory.It seems for me, that he had the same problem ?Maybe I should downgrade my fedora core installation, but that would not be my first choice. If I can provide you with more info, commands, let me know.
No, Fedora 9 should be fine.Can you try the command again, this time also with the -v option (verbose output). That should show us what host it is trying to connect to. I wonder if that is simply failing.
You can also try specifically using -h YOURSERVER where YOURSERVER is the hostname of the machine you installed IPA on.
rob
Andreas-----Ursprüngliche Nachricht-----Von: Rob Crittenden [mailto:rcritten redhat com] Gesendet: Dienstag, 3. Juni 2008 21:56An: Andreas Mischinski Cc: 'freeipa-devel' Betreff: Re: AW: [Freeipa-devel] [PATCH] ignore empty values in multi-valued UI attribute Andreas Mischinski wrote:?I`m a noob with this ipaserver. Tell me what`s wrong with my installationShould I apply your patch and reinstall the ipaserver ?Thanks for help so far. -----Ursprüngliche Nachricht----- Von: freeipa-devel-bounces redhat com [mailto:freeipa-devel-bounces redhat com] Im Auftrag von Rob Crittenden Gesendet: Dienstag, 3. Juni 2008 20:59 An: freeipa-devel Betreff: [Freeipa-devel] [PATCH] ignore empty values in multi-valued UI attribute When converting from a multi-valued UI attribute back to a list drop any blank values. This will avoid errors in the UniqueList() validator. robNo, this patch too is unrelated to your problem. We post all patches for peer review here in a post starting with PATCH so they are easy to find.Can you try this command (basically putting quotes around cn=) /usr/lib/mozldap/ldappasswd -D "cn=Directory Manager" -w password1 -P /etc/dirsrv/slapd-MISCHINS-WORLD/cert8.db -ZZZ -s password1 uid=admin,cn=sysaccounts,cn=etc,dc=mischins,dc=worldThere was one other report of this problem, https://bugzilla.redhat.com/show_bug.cgi?id=442802I was never able to get confirmation on what he did to fix it though. rob
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature