[Fedora-directory-users] Database recreation, automount and performance
Rich Megginson
rmeggins at redhat.com
Wed Jul 13 19:51:28 UTC 2005
Vsevolod (Simon) Ilyushchenko wrote:
> Rich,
>
> Thanks for the quick answer! Perhaps this information should go into
> the FAQ - what do you think?
>
> Rich Megginson wrote on 07/13/2005 12:47 PM:
>
>> The IETF LDAP community has decided to deprecated them in favor of
>> the new netgroups stuff.
>
>
> OK, I'll reconfigure my entries. Does Fedora automounter understand
> the netgroups structure?
I'm trying to find out some information about this.
>
>> We don't yet have a way to set an ACI to allow users other than the
>> Directory Manager (i.e. cn=Directory Manager, not the admin console
>> user) to create the entry for a root suffix. In the console, you can
>> Log In As New User, and specify cn=directory manager (or whatever you
>> used for your directory manager user when you performed the initial
>> installation).
>
>
> This is very non-trivial. :) Creating the root suffix now works, but I
> tried creating top-level entries one by one, as well as creating a new
> server in the administration console, and it all failed. I had to
> delete the RPM and reinstall it.
What problems did you have? I'm not sure what you did, or what you
could have done to necessitate a reinstall.
>
> By the way, I found out that if I install the RPM a second time, the
> admin console tries to connect to port 15918, but the admin server is
> running on port 25394. I don't remember what port was used the first
> time. :(
After uninstall, remove your ~/.mcc directory, or edit the file in there
after installation. The URL box in the login screen should have had a
drop down list to let you select another one.
>
> This time I successfully created an SSL-enabled directory and was able
> to authenticate to it. I followed the steps here:
> http://www.redhat.com/docs/manuals/dir-server/ag/7.1/ssl.html#1087158
> to create a self-signed certificate.
>
> For archives - the docs don't tell you that after running pk12util in
> step 9 you first have to enter the password 'secretpwd' that you've
> saved in the file pwdfile.txt, and then you have to create a different
> startup password.
You can't use the same password?
> Later, when you start the server on the command line, this second
> password is required.
>
> Simon
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3312 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20050713/37ada666/attachment.bin>
More information about the Fedora-directory-users
mailing list