| View previous topic :: View next topic |
| Author |
Message |
Dark_Angel
n00b
Joined: 17 Mar 2006
Posts: 37
|
 Posted: Tue Jul 18, 2006 11:31 am Post subject: User administration |
 |
|
Hi,
I'm new to network aministration and not sure how to go about it. I can't find any guides to help me out.
I'm looking to run a gentoo server that will manage user accounts and serve licences.
any advice?
Thanks |
|
| Back to top |
|
 |
fleed
l33t
Joined: 28 Aug 2002
Posts: 756
Location: London
|
| Posted: Tue Jul 18, 2006 12:01 pm Post subject: |
|
|
| What kind of user accounts? On the gentoo server itself only? On nfs shares? ldap? Or do you mean it will be managing a windows network, where most other machines are windows with shares and the like? A bit more detail would help! |
|
| Back to top |
|
|
Dark_Angel
n00b
Joined: 17 Mar 2006
Posts: 37
|
| Posted: Tue Jul 18, 2006 12:18 pm Post subject: |
|
|
hey, thanks 4 ur reply, ok details, sorry bit of a noob.
I have a group on gentoo computers, that are connected to a windows network via samba. I want to use one of those gentoo machines to manage a accounts, which the the users can log on to on any machine, they'll all have a section on the windows server to keep there files. |
|
| Back to top |
|
|
-KuRGaN-
Veteran
Joined: 05 Dec 2004
Posts: 1142
Location: Besançon (25) [FRANCE]
|
| Posted: Tue Jul 18, 2006 1:44 pm Post subject: |
|
|
So you can look for openldap
_________________
Knight Gent00 Industries RiDeR !!!! |
|
| Back to top |
|
|
Dark_Angel
n00b
Joined: 17 Mar 2006
Posts: 37
|
| Posted: Tue Jul 18, 2006 3:56 pm Post subject: |
|
|
Thanks, I think thats what i needed to know about, I followed the gentoo guide, but I've got stuck,
These are the options I have in my /etc/openldap/slapd.conf
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
pidfile /var/run/openldap/slapd.pid
argsfile /var/run/openldap/slapd.args
database ldbm
suffix "dc=linux10,dc=net"
rootdn "cn=Manager,dc=linux10,dc=net.net"
rootpw testpassword
directory /var/lib/openldap-ldbm
index objectClass eq#suffix "dc=linux10,dc=net"
and in /etc/openldap/ldap.conf
BASE dc=linux10,dc=net
URI ldaps://linux10,dc=net:636/
TLS_REQCERT allow
when I run
ldapsearch -D "cn=Manager,dc=linux10,dc=net" -w testpassword
I get
ldap_bind: Can't contact LDAP server (-1)
and
ldapsearch -D "cn=Manager,dc=linux10,dc=net" -W -d 255
ldap_create
Enter LDAP Password:
ldap_bind
ldap_simple_bind
ldap_sasl_bind
ldap_send_initial_request
ldap_new_connection 1 1 0
ldap_int_open_connection
ldap_connect_to_host: TCP localhost:389
ldap_new_socket: 3
ldap_prepare_socket: 3
ldap_connect_to_host: Trying 127.0.0.1:389
ldap_connect_timeout: fd: 3 tm: -1 async: 0
ldap_close_socket: 3
ldap_perror
ldap_bind: Can't contact LDAP server (-1)
Which comes up whatever password I put in so I guess the issue is there, and the same if i use password-hash
? |
|
| Back to top |
|
|
chris.c.hogan
Apprentice
Joined: 02 Oct 2005
Posts: 189
|
| Posted: Tue Jul 18, 2006 7:41 pm Post subject: |
|
|
| You are asking ldapsearch to connect using SSL. However, you haven't given the LDAP server any certificates. Try changing your URI to ldap (instead of ldaps) and see if you can connect. Also, I'm not sure that ldapsearch defaults to simple authentication. Try adding -x as an option to ldapsearch. |
|
| Back to top |
|
|
Dark_Angel
n00b
Joined: 17 Mar 2006
Posts: 37
|
| Posted: Wed Jul 19, 2006 10:05 am Post subject: |
|
|
Hiya
Hasn't seemed to have made a difference, |
|
| Back to top |
|
|
chris.c.hogan
Apprentice
Joined: 02 Oct 2005
Posts: 189
|
| Posted: Wed Jul 19, 2006 6:25 pm Post subject: |
|
|
Hmm, I should have taken a closer look at that line...
Your LDAP server is running on localhost, right? Let me know if this works:
| Code: | | ldapsearch -H ldap://localhost -x -D "cn=Manager,dc=linux10,dc=net" -w testpassword |
|
|
| Back to top |
|
|
|
Networking & Security
