Re: understanding ldapd log error messages

Sun, 23 Apr 2017 19:53:54 -0700 

Robert Klein <rokl...@roklein.de> wrote:

> Hi,
> 
> On Sat, 22 Apr 2017 21:55:58 -0400
> Predrag Punosevac <punoseva...@gmail.com> wrote:
> 
> > Predrag Punosevac write:
> > > Hi misc,
> > > 
> > > ldapd on one of my two ldap servers stop working overnight
> > >   
> > 
> > ldapd died again overnight. I noticed that this started happening not
> > right after the upgrade to 6.1 but less than 24h  after I added a
> > person to my LDAP database. How do I go about debugging a daemon? I am
> > reading
> > 
> > http://man.openbsd.org/rc.d
> > 
> > and I have used option -d when a daemon fails to start but I really
> > need to catch what happens when ldapd dies and redirect to the log
> > file. 
> 
> 
> Use the options "-dv" at first.  If you need to see th BER messages use
> "-dvv"  (see also "man ldapd").
> 
> Could you post an example setup, i.e. ldapd.conf and a LDIF file?

# more /etc/ldapd.conf
#       $OpenBSD: ldapd.conf,v 1.2 2010/06/29 02:50:22 martinh Exp $

schema "/etc/ldap/core.schema"
schema "/etc/ldap/inetorgperson.schema"
schema "/etc/ldap/nis.schema"

listen on lo0 tls certificate atlas
listen on em1 tls certificate atlas
listen on "/var/run/ldapi"

namespace "dc=autonlab,dc=org" {
        rootdn          "cn=admin,dc=autonlab,dc=org"
        rootpw          "{SSHA}iV3eDxcQ9LM9EJN6ltigbmHFUwuS/tE/"
        index           sn
        index           givenName
        index           cn
        index           mail
}


This is an example of newuser.ldif file used to add new users to the
database.  Note the following file is sanitized for trailing white
spaces. The white spaces you see in my e-mail are not in the database.

# more new_user.ldif 
dn: cn=jsmith,ou=group,dc=autonlab,dc=org
cn: jsmith
objectClass: top
objectClass: posixGroup
gidNumber: 1120
memberUid: jsmith
description: User Private Group


dn: uid=jsmith,ou=users,dc=autonlab,dc=org
uid: jsmith
cn: John Smith
sn: Smith
givenName: John
displayName: John Smith
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
shadowLastChange: 1492716996
userPassword: {SSHA}E7VQcALE0zXe4lehOulF/fXIdi2kUQ6b
shadowMin: 1
shadowMax: 180
shadowWarning: 7
shadowInactive: 30
shadowExpire: -1
shadowFlag: 0
loginShell: /bin/bash
uidNumber: 1120
gidNumber: 1120
homeDirectory: /zfsauton/home/jsmith
mail: jsm...@web.de
gecos: John Smith
title: MSc student
postalAddress: NSH 3128
postalAddress: CMU
businessCategory: Graduate Student
telephoneNumber: (412) ???-????
o: Auton Lab




> 
> Best regards
> Robert

Reply via email to