[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Fedora-directory-users] FDS and phpLDAPadmin



jim bartus wrote:
I just ran into the same problem using 'ldapsearch' yesterday. Out of curiosity, whats the reasoning behind FDS not supplying a default root?
I'm not sure what this means. What is a default root and how can FDS supply it?

I think one of the problems is that phpldapadmin depends on being able to do the following query:
ldapsearch -s base -b "" "(objectclass=*)" "*" "+"
The "+" is a special openldap-only (but now an rfc I think) extension which tells the server to return all operational attributes. The list of suffixes (i.e. "roots") is an operational attribute - namingContexts - in the rootdse. If you could find the section in phpldapadmin where it queries the rootdse, and you add this attribute to the search operation attribute list, that may solve the problem.

Another problem could be with anonymous access control - see here - http://directory.fedora.redhat.com/wiki/Howto:phpLdapAdmin
Is it common practice to set it somewhere once you've setup your tree, or is it deliberately omitted for some compatibility or security reason?

-jim

On 1/25/07, *Heath Henderson* <heath a5 com <mailto:heath a5 com>> wrote:

    Thanks, I had tried this last night, but will give it another go
    today.

    At least I know I was in the right place.


    --
    Heath Henderson
    heath a5 com <mailto:heath a5 com>
    --



    > From: Patrick Morris <patrick morris hp com
    <mailto:patrick morris hp com>>
    > Reply-To: "General discussion list for the Fedora Directory
    server project."
    > < fedora-directory-users redhat com
    <mailto:fedora-directory-users redhat com>>
    > Date: Thu, 25 Jan 2007 11:44:07 -0800
    > To: "General discussion list for the Fedora Directory server
    project."
    > < fedora-directory-users redhat com
    <mailto:fedora-directory-users redhat com>>
    > Subject: Re: [Fedora-directory-users] FDS and phpLDAPadmin
    >
    > On Thu, 25 Jan 2007, Heath Henderson wrote:
    >
    >> I am new to LDAP and more specifically FDS.  I had an OpenLDAP
    server setup
    >> a year or so ago which I used an older version of phpldapadmin
    with.  It
    >> seemed to work without too much trouble, but I can't seem to
    get either FDS
    >> or OpenLDAP working with phpldapamdin.
    >>
    >> I found some information in the list archives as well as other
    places, but
    >> my problem seems to be still existing.
    >>
    >> The error I get from phpLDAPadmin
    >>
    >>    Could not determine the root of your LDAP tree.
    >> It appears that the LDAP server has been configured to not
    reveal its root.
    >> Please specify it in config.php
    >>
    >>
    >> I would really like to use FDS and have it running what I
    consider very
    >> well. I am not able to get this plugged into it and I really
    don't know
    >> enough yet on where to look to configure either FDS to reveal
    its root or
    >> phpldapadmin to know what the rootDSE is set to?
    >
    > In your phpLDAPadmin config, you need to set this:
    >
    > /* Array of base DNs of your LDAP server. Leave this blank to have
    >  * phpLDAPadmin
    >     auto-detect it for you. */
    >     // $ldapservers->SetValue($i,'server','base',array(''));
    >
    > It should be an array of the DNs you want to appear there.
    >
    > --
    > Fedora-directory-users mailing list
    > Fedora-directory-users redhat com
    <mailto:Fedora-directory-users redhat com>
    > https://www.redhat.com/mailman/listinfo/fedora-directory-users
    >


    --
    Fedora-directory-users mailing list
    Fedora-directory-users redhat com
    <mailto:Fedora-directory-users redhat com>
    https://www.redhat.com/mailman/listinfo/fedora-directory-users


------------------------------------------------------------------------

--
Fedora-directory-users mailing list
Fedora-directory-users redhat com
https://www.redhat.com/mailman/listinfo/fedora-directory-users

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]