[Fedora-directory-users] FDS and phpLDAPadmin

Richard Megginson rmeggins at redhat.com
Tue Feb 13 14:55:56 UTC 2007 

jim bartus wrote:
> I just ran into the same problem using 'ldapsearch' yesterday.  Out of 
> curiosity, whats the reasoning behind FDS not supplying a default root?
I'm not sure what this means.  What is a default root and how can FDS 
supply it?

I think one of the problems is that phpldapadmin depends on being able 
to do the following query:
ldapsearch -s base -b "" "(objectclass=*)" "*" "+"
The "+" is a special openldap-only (but now an rfc I think) extension 
which tells the server to return all operational attributes.  The list 
of suffixes (i.e. "roots") is an operational attribute - namingContexts 
- in the rootdse.  If you could find the section in phpldapadmin where 
it queries the rootdse, and you add this attribute to the search 
operation attribute list, that may solve the problem.

Another problem could be with anonymous access control - see here - 
http://directory.fedora.redhat.com/wiki/Howto:phpLdapAdmin
> Is it common practice to set it somewhere once you've setup your tree, 
> or is it deliberately omitted for some compatibility or security reason?
>
> -jim
>
> On 1/25/07, *Heath Henderson* <heath at a5.com <mailto:heath at a5.com>> wrote:
>
>     Thanks, I had tried this last night, but will give it another go
>     today.
>
>     At least I know I was in the right place.
>
>
>     --
>     Heath Henderson
>     heath at a5.com <mailto:heath at a5.com>
>     --
>
>
>
>     > From: Patrick Morris <patrick.morris at hp.com
>     <mailto:patrick.morris at hp.com>>
>     > Reply-To: "General discussion list for the Fedora Directory
>     server project."
>     > < fedora-directory-users at redhat.com
>     <mailto:fedora-directory-users at redhat.com>>
>     > Date: Thu, 25 Jan 2007 11:44:07 -0800
>     > To: "General discussion list for the Fedora Directory server
>     project."
>     > < fedora-directory-users at redhat.com
>     <mailto:fedora-directory-users at redhat.com>>
>     > Subject: Re: [Fedora-directory-users] FDS and phpLDAPadmin
>     >
>     > On Thu, 25 Jan 2007, Heath Henderson wrote:
>     >
>     >> I am new to LDAP and more specifically FDS.  I had an OpenLDAP
>     server setup
>     >> a year or so ago which I used an older version of phpldapadmin
>     with.  It
>     >> seemed to work without too much trouble, but I can't seem to
>     get either FDS
>     >> or OpenLDAP working with phpldapamdin.
>     >>
>     >> I found some information in the list archives as well as other
>     places, but
>     >> my problem seems to be still existing.
>     >>
>     >> The error I get from phpLDAPadmin
>     >>
>     >>    Could not determine the root of your LDAP tree.
>     >> It appears that the LDAP server has been configured to not
>     reveal its root.
>     >> Please specify it in config.php
>     >>
>     >>
>     >> I would really like to use FDS and have it running what I
>     consider very
>     >> well. I am not able to get this plugged into it and I really
>     don't know
>     >> enough yet on where to look to configure either FDS to reveal
>     its root or
>     >> phpldapadmin to know what the rootDSE is set to?
>     >
>     > In your phpLDAPadmin config, you need to set this:
>     >
>     > /* Array of base DNs of your LDAP server. Leave this blank to have
>     >  * phpLDAPadmin
>     >     auto-detect it for you. */
>     >     // $ldapservers->SetValue($i,'server','base',array(''));
>     >
>     > It should be an array of the DNs you want to appear there.
>     >
>     > --
>     > Fedora-directory-users mailing list
>     > Fedora-directory-users at redhat.com
>     <mailto:Fedora-directory-users at redhat.com>
>     > https://www.redhat.com/mailman/listinfo/fedora-directory-users
>     >
>
>
>     --
>     Fedora-directory-users mailing list
>     Fedora-directory-users at redhat.com
>     <mailto:Fedora-directory-users at redhat.com>
>     https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
>
> ------------------------------------------------------------------------
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>   
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20070213/179d4425/attachment.bin>

More information about the Fedora-directory-users mailing list