On 05/18/2018 03:13 PM, i...@tecnoaccion.com.ar wrote: > El 18/05/18 a las 16:09, Mark Reynolds escribió: >> >> On 05/18/2018 03:01 PM, None via FreeIPA-users wrote: >>> hi! >>> >>> I'm new to FreeIPA, I inherited a FreeIPA infrastructure, and I'm >>> trying to have a Nagios check for the replication status (without >>> indicating a password). I found this article: >>> <https://danieljamesscott.org/11-articles/application-guides/26-freeipa-replication-monitoring.html>. >>> >>> It's exactly what I want to do >>> >>> but, when I try to do the ldapmodify thing with >>> grant_anonymous_replication_view.ldif (only changing >>> cn="dc=example,dc=com" according to my installation), I get: >>> >>> $ ldapmodify -x -D "cn=directory manager" -W -f >>> grant_anonymous_replication_view.ldif -h ipa.mydomain.com.ar >>> Enter LDAP Password: >>> >>> >>> and it doesn't accept admin or directory manager password (?) >> Do you get an invalid credentials error (49), or? > > > that's right, I get: > ldap_bind: Invalid credentials (49) > > > >>> do I have to make other changes to the ldif? >> No >>> or, what is the password I need? >> Only you would know, if you don't know it then you can always reset the >> directory manager password: >> >> http://www.port389.org/docs/389ds/howto/howto-resetdirmgrpassword.html > > > I do have admin and directory manager password, I tried with both, and > I got the same result (?) Sounds like you don't have the correct password if you are getting error 49. The only other thing it could be is that the "cn=directory manager" account is not setup as "cn=directory manager" in your setup. You can confirm by grepping for "nsslapd-rootdn" from /etc/dirsrv/slapd-YOUR_INSTANCE/dse.ldif. If it is set to "cn=directory manager', then you have the wrong password and you should reset it. Otherwise you have the wrong DN. It's one or the other.
Regards, Mark > > > thanks, > René _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/freeipa-users@lists.fedorahosted.org/message/4Z2BH3I53PAGFF6XFSVWHKUU7A467PLF/