[Fedora-directory-devel] Help with silent installs
Andrew Bartlett
abartlet at samba.org
Mon Jan 29 22:19:06 UTC 2007
I'm having trouble trying to setup Fedora DS for Samba4's 'make test'
environment. I'm using this as a reproducible development platform for
my LDAP backend testing with Fedora DS.
So far, I've been attempting to run
/opt/fedora-ds/setup/setup -s st/ldap/fedorads.inf
(where fedorads.inf is attached)
As non-root, it errors out all over the place with being unable to read
files. I'm a bit puzzled by this, because the basic distribution files
should be public knowledge, and it shouldn't be trying to touch any
other LDAP setup on the disk.
> grep: /opt/fedora-ds/admin-serv/config/adm.conf: Permission denied
> touch: cannot touch `dssecure.txt': Permission denied
> touch: cannot touch `assecure.txt': Permission denied
> grep: /opt/fedora-ds/slapd-localhost/config/dse.ldif: Permission
> denied
> grep: /opt/fedora-ds/slapd-localhost/config/dse.ldif: Permission
> denied
> grep: /opt/fedora-ds/admin-serv/config/adm.conf: Permission denied
> grep: /opt/fedora-ds/admin-serv/config/adm.conf: Permission denied
> Converting slapd-localhost to new format password file . . .
> Copying new schema ldiffiles . . .
> Can't create /opt/fedora-ds/slapd-localhost/config/schema-bak/old:
> Permission denied
> Starting slapd-localhost . . .
When run as root, it wants the password to the configuration directory.
How do I convince it that it will become the configuration directory,
for it's mini-instance?
> sudo /opt/fedora-ds/setup/setup -s st/ldap/fedorads.inf
> INFO Begin Setup . . .
> In order to reconfigure your installation, the Configuration Directory
> Administrator password is required. Here is your current information:
>
> Configuration Directory:
> ldap://localhost.localdomain:3389/o=NetscapeRoot
> Configuration Administrator ID: admin
>
> At the prompt, please enter the password for the Configuration
> Administrator.
>
> administrator ID: admin
> Password:
> Password:
I find it odd that we ever require passwords to convince the DS that we,
as a local root user, are a local root user. This should be handled
behind the covers (perhaps with the ldapi:// support I've asked for).
Anyway, can I have some hints as to how to setup a unprivileged, test
LDAP server from the binaries in the fedora-ds-1.0.4 RPM?
Are some of the files needlessly read protected, or am I just doing
something wrong?
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc. http://redhat.com
-------------- next part --------------
[General]
FullMachineName= localhost
ServerRoot= /data/samba/samba4/svn/source/st/ldap
ConfigDirectoryLdapURL= ldap://127.0.0.1:3389/o=NetscapeRoot
ConfigDirectoryAdminID= administrator
AdminDomain= localdomain
ConfigDirectoryAdminPwd= penguin
Components= svrcore,base,slapd
[slapd]
ServerPort= 3389
Suffix= dc=samba,dc=example,dc=com
RootDN= cn=Manager,dc=samba,dc=example,dc=com
RootDNPwd= penguin
Components= slapd
ServerIdentifier= samba4
InstallLdifFile=/data/samba/samba4/svn/source/st/ldap/fedorads-initial-ldif.inf
[base]
Components= base
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-directory-devel/attachments/20070130/9ce58385/attachment.sig>
More information about the Fedora-directory-devel
mailing list