[Fedora-directory-users] getting solaris 8 to talk to FDS

Justin Albstmeijer justin at VLAMea.nl
Wed Aug 24 14:24:43 UTC 2005 

My 2 cents

- test with: ldapsearch -h ldapserver.domain.nl -s base -b ""
"objectclass=*" , to see if you can queuery the server.
- make sure the posix account has the "shadowAccount" attribute
- SSHA is default used by FDS for password encyption.. this should be CRYPT.

import:
------------------------------
dn: cn=config
changetype: modify
replace: passwordstoragescheme
passwordstoragescheme: CRYPT
------------------------------

- make sure to use "simple" instead of "tls:simple" for your initial tests
- use : ldapclient -v -P default -D
"cn=proxyagent,ou=profile,dc=domain,dc=nl" -d domain.nl -w proxy_password
{ipnumber_ldap_server} , to create the ldap_file & ldap_cred files
- make sure you run te latest recommended patch cluster.


I'm working on documentation.. maybe I'll have time to publish it sometime
soon.

Justin

> Hi, all.  I've been battling this for days now, with
> no luck.  I've got fds up & running and linux clients
> authenticating w/o problems.  Solaris has so far been
> a royal pain.
>
> This is what I've done so far:
> - imported the 2 schemas that a kind soul sent me (dua
> & nis)
> - added the nisDomain object
> - added a few users to test
> - copied the ldap_file & ldap_cred files from Gary
> Tay's site
> - added a default simple profile
> - ran ldap-genprofile to get the NS1 password, put it
> in the cred file.
> - added ldap to the nsswitch.conf
>
> Yet the solaris box doesn't see the ldap server.  In
> the dmesg, I see this:
>
> Aug 24 09:16:34 unknown getent[1506]: [ID 293258
> user.error] libsldap: Status: 7  Mesg: Session error
> no available conn.
> Aug 24 09:18:07 unknown nscd[1498]: [ID 293258
> user.error] libsldap: Status: 7  Mesg: Session error
> no available conn.
> Aug 24 09:18:07 unknown nscd[1498]: [ID 293258
> user.error] libsldap: Status: 7  Mesg: Session error
> no available conn.
>
> Can anybody point me in the right direction?  I'm
> about to start kicking the solaris server...
>
>
>
> ____________________________________________________
> Start your day with Yahoo! - make it your home page
> http://www.yahoo.com/r/hs
>
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
>

More information about the Fedora-directory-users mailing list