[Fedora-directory-users] getting solaris 8 to talk to FDS
Tay, Gary
Gary_Tay at platts.com
Thu Aug 25 16:15:22 UTC 2005
It is kind of messy here, pls don't continue to do any other thing, I strongly suggest you start from FRESH and reinstall FDS7.1 again.
OK assuming you prefer to use foo.com as the LDAP domain (nisdomain), the baseDN (where the topmost rootDN is) will be dc=foo,dc=com, if you choose "populate with sample data", I think the ou=People and ou=Groups will be created, note that ou=group will not be created.
I am not sure and couldn't recall if FDS7.1 installation will create the nisDomain object in the rootDN, if it does not, you could create it by accessing this rootDN in admin server/open directory, click rootDN, add an objectClass "nisDomainObject" and attribute "nisDomain", with value "foo.com" in it (without the quotes).
If you query everything, the rootDN is listed first, it will be something like:
# /usr/bin/ldapsearch –h ldap1.foo.com -b "dc=foo,dc=com" -L "objectclass=*" | more
dn: dc=foo,dc=com
dc: foo
objectClass: top
objectClass: domain
objectClass: nisDomainObject
nisDomain: foo.com
...
Since most DS product standardize on using ou=group as the group data OU, instead of ou=Groups, do add "ou=group" using admin console.
Again whatever you do, don't jump, don't do "ldaplist" without first making sure "ldapclient" run OK, ldap_cachemgr started OK and show no error in its log, and so on.
Gary
-----Original Message-----
From: fedora-directory-users-bounces at redhat.com on behalf of Igor
Sent: Thu 8/25/2005 11:17 PM
To: General discussion list for the Fedora Directory server project.
Cc:
Subject: RE: [Fedora-directory-users] getting solaris 8 to talk to FDS
--- "Tay, Gary" <Gary_Tay at platts.com> wrote:
> I think you should put "objectclass=*" (search filter) at the end, see
> "man ldapsearch"
>
> If you need to do anything and are not familar with LDAP command tools,
> use the admin server to do it.
>
> IIRC all your LDAP data should have baseDN dc=composers,dc=foo,dc=com,
> if your nisdomain (LDAP domain) is set as composers.foo.com.
I changed it:
# foo.com, foo.com
dn: nisdomain=foo.com,dc=foo,dc=com
objectClass: top
objectClass: nisdomainobject
nisDomain: foo.com
bash-2.03# ldaplist -l
ldaplist: Object not found (LDAP ERROR (50): Insufficient access.)
Gary, sorry for being dense but where's the baseDN? I need to check what it is...
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
--
Fedora-directory-users mailing list
Fedora-directory-users at redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
-------------- next part --------------
A non-text attachment was scrubbed...
Name: winmail.dat
Type: application/ms-tnef
Size: 6570 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20050826/6341f7d2/attachment.bin>
More information about the Fedora-directory-users
mailing list