[Fedora-directory-users] getting solaris 8 to talk to FDS
Tay, Gary
Gary_Tay at platts.com
Thu Aug 25 04:26:49 UTC 2005
To achieve the same result of this:
===
import:
------------------------------
dn: cn=config
changetype: modify
replace: passwordstoragescheme
passwordstoragescheme: CRYPT
------------------------------
===
You could simply go into FDS7.1 admin server, open directory server,
click "config (XXX acis)", right click again to edit its properties,
I think ldaplist will work only after successful "ldapclient"
initialization, ldapsearch will work as long as the ldap server allows
the data to be returned.
One irritating fact on Solaris8 is the lack of LDAP VERSION 2 client
command tools, I have to resort to performing a "dummy" SUN ONE DS5.2
install (with both server and client component) and just use the client
component while keeping the server component shutdown. Only the VERSION
2 "ldapsearch" command in $IDS5_PATH/shared/bin has the "-Z" and "-P"
options for testing TLS/SSL connection (After getting simple bind to
work, I am sure one would like to get tls:simple bind to work as it is
more secure).
# cat test_native_client_tls.sh
LDAP_ROOT=/usr/iplanet/ds5
LD_LIBRARY_PATH=$LDAP_ROOT/lib:$LD_LIBRARY_PATH; export LD_LIBRARY_PATH
echo "Testing LDAP Master..."
$LDAP_ROOT/shared/bin/ldapsearch -h ldap1.example.com -p 636 -b "" -s
base -Z -P /var/ldap/cert7.db "(objectclass=*)"
Gary
-----Original Message-----
From: fedora-directory-users-bounces at redhat.com
[mailto:fedora-directory-users-bounces at redhat.com] On Behalf Of Igor
Sent: Thursday, August 25, 2005 1:02 AM
To: General discussion list for the Fedora Directory server project.
Subject: Re: [Fedora-directory-users] getting solaris 8 to talk to FDS
--- Justin Albstmeijer <justin at VLAMea.nl> wrote:
>
> My 2 cents
>
> - test with: ldapsearch -h ldapserver.domain.nl -s
> base -b ""
> "objectclass=*" , to see if you can queuery the
> server.
Yea -- I can't. (there's no ldapsearch on this
machine, so I used ldaplist)
bash-2.03# ldaplist
ldaplist: Object not found (Session error no available
conn.
)
Same error message. This is a pretty fundamental
problem, no? I mean, like you said -- the FDS needs
to be switched from ssha to crypt, etc but regardless, shouldn't
ldaplist work?
I also have iDS installed I suppose I can scp
ldapsearch from there...
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
--
Fedora-directory-users mailing list Fedora-directory-users at redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users
More information about the Fedora-directory-users
mailing list