Re: [389-users] Using Wildcard SSL Certificate

On 5/25/2012 9:41 PM, Jeff Field wrote: Hello, I'm attempting to use a Wildcard SSL certificate for my domain with 389ds. The certificate and the CA (godaddy) intermediate cert import fine into both the admin server and the directory server, but attempts to use an LDAPS:// URI with ldapmodify

Re: [389-users] Sync with active directory doubts

On 5/17/2012 2:26 PM, Alberto Viana wrote: Hello, I have 2 389 DS servers a 6 AD servers and i read this on red hat documetation about windows replication: "There can only be a single sync agreement between the Directory Server environment and the Active Directory environment. Multiple sync

Re: [389-users] nscd sometimes gets "stuck"

Hi Sean! On Mon, 22 Mar 2010, Sean Carolan wrote: > I'm testing the 389 directory server in our lab environment before > moving it to production and have noticed that occasionally it won't > let me log in. I have to restart the nscd service before it will > authenticate my user. Here's the erro

Re: [389-users] NB: can't login/connect to FDS

Hi Brad! On Tue, 09 Mar 2010, Brad Fuller wrote: > HI, > > I'm brand new to FDS/LDAP. I've set up the server, seems to run fine, > can log in to the admin/dir console and create people. > I've tried to set up a fedora 12 client so that I can log in accessing > the FDS server but I don't seem to

Re: [389-users] Migrating to LDAP authentication

Hi Sean! On Fri, 12 Feb 2010, Sean Carolan wrote: > > I have UsePAM turned on, and getent group shows me in the "operations" > > group.  I wonder why sshd is not seeing that I'm in the operations > > group? > > Ok, never mind. On this particular server there was one entry in > /etc/group with m

Re: [389-users] Migrating to LDAP authentication

Hi Sean! On Fri, 12 Feb 2010, Sean Carolan wrote: > > Is "invalid user" all you're seeing in the log? Generally, at least with > > OpenSSH, if the user is being denied because it's not in a valid group, > > the logs will say so. They'll also generally tell you if it's because it > > couldn't find

Re: [389-users] Migrating to LDAP authentication

Hi Sean! On Tue, 02 Feb 2010, Sean Carolan wrote: > >> Any suggestions for migrating accounts from /etc/shadow into the LDAP > >> database?  I tried this LdapImport perl script but it threw a bunch of > >> errors and ultimately failed: > > > > At the time I did the initial import here, I put toge

Re: [389-users] Migrating to LDAP authentication

On Tue, 02 Feb 2010, Sean Carolan wrote: > > Incidentally, that may also answer your other question about how to > > disable local shadow file passwords. > > Any suggestions for migrating accounts from /etc/shadow into the LDAP > database? I tried this LdapImport perl script but it threw a bunch