[FUG-BR] Problemas com a configuração do LDAP

Flavio Junior billpp em gmail.com
Quinta Janeiro 22 13:47:48 BRST 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

MIguel,

Teu erro esta nas entradas de grupo, essa por exemplo:

dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br
objectClass: posixGroup
objectClass: top
cn: wheel
userPassword: {crypt}*
gidNumber: 0
memberUid: root
memberUid: miguel

Pode ser a falta do schema "nis.schema" no teu ldap, pode ser por
causa do conteudo do userPassword...

remove a linha userPassword e tenta de novo, mas antes confirma o
nis.schema no slapd.conf

- --

Flávio do Carmo Júnior aka waKKu

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: http://getfiregpg.org

iEYEARECAAYFAkl4lSUACgkQgyuXjr6dyktVyACfSqYdd6qgOoh3U1IwG+w4wwgQ
GZMAnAhsPhMxXoOr91elt0MAyIJmnvw3
=PzJP
-----END PGP SIGNATURE-----

On Thu, Jan 22, 2009 at 1:37 PM, Miguel Martins <migueljr01 em gmail.com> wrote:
> desculpe ...
> ele esta assim no servidor
>
> sauron# more base.ldif
> dn: dc=assesc,dc=edu,dc=br
> dc: ASSESC
> objectClass: top
> objectClass: domain
>
> dn: ou=People,dc=assesc,dc=edu,dc=br
> ou: People
> objectClass: top
> objectClass: organizationalUnit
>
> dn: ou=Group,dc=assesc,dc=edu,dc=br
> ou: Group
> objectClass: top
> objectClass: organizationalUnit
>
> dn: ou=Computers,dc=assesc,dc=edu,dc=br
> ou: Computers
> objectClass: top
> objectClass: organizationalUnit
>
> dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br
> objectClass: posixGroup
> objectClass: top
> cn: wheel
> userPassword: {crypt}*
> gidNumber: 0
> memberUid: root
> memberUid: miguel
>
> dn: cn=nogroup,ou=Group,dc=assesc,dc=edu,dc=br
> objectClass: posixGroup
> objectClass: top
> cn: nogroup
> userPassword: {crypt}*
> gidNumber: 65533
>
> dn: cn=nobody,ou=Group,dc=assesc,dc=edu,dc=br
> objectClass: posixGroup
> objectClass: top
> cn: nobody
> userPassword: {crypt}*
> gidNumber: 65534
>
> dn: uid=root,ou=People,dc=assesc,dc=edu,dc=br
> uid: root
> cn: Charlie &
> objectClass: account
> objectClass: posixAccount
> objectClass: top
> userPassword: {crypt}*
> loginShell: /bin/csh
> uidNumber: 0
> gidNumber: 0
> homeDirectory: /root
> gecos: Charlie &
>
> dn: uid=nobody,ou=People,dc=assesc,dc=edu,dc=br
> uid: nobody
> cn: Unprivileged user
> objectClass: account
> objectClass: posixAccount
> objectClass: top
> userPassword: {crypt}*
> loginShell: /usr/sbin/nologin
> uidNumber: 65534
> gidNumber: 65534
> homeDirectory: /nonexistent
> gecos: Unprivileged user
>
> dn: uid=miguel,ou=People,dc=assesc,dc=edu,dc=br
> uid: miguel
> cn: Miguel Martins Jr
> objectClass: account
> objectClass: posixAccount
> objectClass: top
> userPassword: {crypt}*
> loginShell: /bin/csh
> uidNumber: 1001
> gidNumber: 0
> homeDirectory: /home/miguel
> gecos: Miguel Martins Jr
>
> dn: uid=sauron,ou=Computers,dc=assesc,dc=edu,dc=br
> uid: sauron
> cn: Servidor
> objectClass: account
> objectClass: posixAccount
> objectClass: top
> userPassword: {crypt}*
> loginShell: /usr/bin/nologin
> uidNumber: 200
> gidNumber: 200
> homeDirectory: noexistent
> gecos: Servidor
>
> dn: cn=NextFreeUnixId,dc=assesc,dc=edu,dc=br
> objectClass: inetOrgPerson
> objectClass: sambaUnixIdPool
> uidNumber: 1000
> gidNumber: 1000
> cn: NextFreeUnixId
> sn: NextFreeUnixId
>
> dn: zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
> objectClass: top
> objectClass: dNSZone
> relativeDomainName: assesc.edu.br
> zoneName: assesc.edu.br
>
> dn: relativeDomainName=assesc.com.br,zoneName=assesc.com.br
> ,dc=assesc,dc=edu,dc=br
> objectClass: top
> objectClass: dNSZone
> relativeDomainName: assesc.edu.br
> zoneName: assesc.edu.br
> dNSTTL: 3600
> dNSClass: IN
> SOARecord: ns1.assesc.edu.br. hostmaster.assesc.edu.br. 1 10800 3600 604800
> 86400
> NSRecord: ns1.assesc.edu.br.
> NSRecord: ns2.assesc.edu.br.
> ARecord: 192.168.3.254
> MXRecord: 10 mail.assesc.edu.br.
>
> dn: relativeDomainName=@,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
> objectClass: top
> objectClass: dNSZone
> relativeDomainName: @
> zoneName: assesc.edu.br
> dNSTTL: 3600
> dNSClass: IN
> SOARecord: ns1.assesc.edu.br. hostmaster.assesc.edu.br. 1 10800 3600 604800
> 86400
> NSRecord: ns1.assesc.edu.br.
> NSRecord: ns2.assesc.edu.br.
> ARecord: 192.168.3.254
> MXRecord: 10 mail.assesc.edu.br.
>
> dn: relativeDomainName=ns1,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
> objectClass: top
> objectClass: dNSZone
> relativeDomainName: ns1
> zoneName: assesc.edu.br
> dNSTTL: 3600
> dNSClass: IN
> ARecord: 192.168.3.254
>
> dn: relativeDomainName=ns2,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
> objectClass: top
> objectClass: dNSZone
> relativeDomainName: ns2
> zoneName: assesc.edu.br
> dNSTTL: 3600
> dNSClass: IN
> ARecord: 200.135.16.114
>
> dn: relativeDomainName=mail,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
> objectClass: top
> objectClass: dNSZone
> relativeDomainName: mail
> zoneName: assesc.edu.br
> dNSTTL: 3600
> dNSClass: IN
> ARecord: 192.168.3.254
>
> dn: relativeDomainName=sauron,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
> objectClass: top
> objectClass: dNSZone
> relativeDomainName: sauron
> zoneName: assesc.edu.br
> dNSTTL: 3600
> dNSClass: IN
> ARecord: 192.168.3.254
>
>
> 2009/1/22 Flavio Junior <billpp em gmail.com>
>
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> Linhas vazias pro ldap é final de registro...
>>
>> Vas ter que aninhar todos teus registros pra evitar linhas vazias no meio
>> deles.
>>
>> - --
>>
>> Flávio do Carmo Júnior aka waKKu
>>
>> -----BEGIN PGP SIGNATURE-----
>> Version: GnuPG v1.4.9 (MingW32)
>> Comment: http://getfiregpg.org
>>
>> iEYEARECAAYFAkl4kPAACgkQgyuXjr6dyksN3wCfVlas83q938uJL22L6KhlpiWv
>> yRAAnR4cPI3dF+0WesKe2rMS5/V8HFYy
>> =2+QG
>> -----END PGP SIGNATURE-----
>>
>> On Thu, Jan 22, 2009 at 1:25 PM, Miguel Martins <migueljr01 em gmail.com>
>> wrote:
>> > Amigos,
>> >
>> >       Estou configurando um LDAP + SAMBA + AD no freebsd 7.0 seguindo o
>> how
>> > to do site só que me apresenta o seguinte erro abaixo. Podem me orientar
>> no
>> > que esto errando ?
>> >
>> >
>> > sauron# sed -i.bak 's/dominio/ASSESC/g' base.ldif
>> > sauron# ldapmodify -x -D cn=root,dc=assesc,dc=edu,dc=br -W -f
>> > /root/base.ldif
>> > Enter LDAP Password:
>> > modifying entry "dc=assesc,dc=edu,dc=br"
>> >
>> > modifying entry "ou=People,dc=assesc,dc=edu,dc=br"
>> >
>> > modifying entry "ou=Group,dc=assesc,dc=edu,dc=br"
>> >
>> > modifying entry "ou=Computers,dc=assesc,dc=edu,dc=br"
>> > ldapmodify: Invalid syntax (21)
>> >        additional info: objectClass: value #1 invalid per syntax
>> >
>> > Segue base.ldif
>> >
>> > dn: dc=assesc,dc=edu,dc=br
>> > dc: *ASSESC*
>> > objectClass: top
>> > objectClass: domain
>> >
>> > dn: ou=People,dc=assesc,dc=edu,dc=br
>> > ou: People
>> > objectClass: top
>> > objectClass: organizationalUnit
>> >
>> > dn: ou=Group,dc=assesc,dc=edu,dc=br
>> > ou: Group
>> > objectClass: top
>> > objectClass: organizationalUnit
>> >
>> > dn: ou=Computers,dc=assesc,dc=edu,dc=br
>> > ou: Computers
>> > objectClass: top
>> > objectClass: organizationalUnit
>> >
>> >
>> >
>> > dn: cn=wheel,ou=Group,dc=assesc,dc=edu,dc=br
>> >
>> > objectClass: posixGroup
>> >
>> > objectClass: top
>> >
>> > cn: wheel
>> >
>> > userPassword: {crypt}*
>> >
>> > gidNumber: 0
>> >
>> > memberUid: root
>> >
>> > memberUid: *miguel*
>> >
>> >
>> >
>> > dn: cn=nogroup,ou=Group,dc=assesc,dc=edu,dc=br
>> >
>> > objectClass: posixGroup
>> >
>> > objectClass: top
>> >
>> > cn: nogroup
>> >
>> > userPassword: {crypt}*
>> >
>> > gidNumber: 65533
>> >
>> >
>> >
>> > dn: cn=nobody,ou=Group,dc=assesc,dc=edu,dc=br
>> >
>> > objectClass: posixGroup
>> >
>> > objectClass: top
>> >
>> > cn: nobody
>> >
>> > userPassword: {crypt}*
>> >
>> > gidNumber: 65534
>> >
>> >
>> >
>> > dn: uid=root,ou=People,dc=assesc,dc=edu,dc=br
>> >
>> > uid: root
>> >
>> > cn: Charlie &
>> >
>> > objectClass: account
>> >
>> > objectClass: posixAccount
>> >
>> > objectClass: top
>> >
>> > userPassword: {crypt}*
>> >
>> > loginShell: /bin/csh
>> >
>> > uidNumber: 0
>> >
>> > gidNumber: 0
>> >
>> > homeDirectory: /root
>> >
>> > gecos: Charlie &
>> >
>> >
>> >
>> > dn: uid=nobody,ou=People,dc=assesc,dc=edu,dc=br
>> >
>> > uid: nobody
>> >
>> > cn: Unprivileged user
>> >
>> > objectClass: account
>> >
>> > objectClass: posixAccount
>> >
>> > objectClass: top
>> >
>> > userPassword: {crypt}*
>> >
>> > loginShell: /usr/sbin/nologin
>> >
>> > uidNumber: 65534
>> >
>> > gidNumber: 65534
>> >
>> > homeDirectory: /nonexistent
>> >
>> > gecos: Unprivileged user
>> >
>> >
>> >
>> > dn: uid=*miguel*,ou=People,dc=assesc,dc=edu,dc=br
>> >
>> > uid: *miguel*
>> >
>> > cn: *Miguel Martins Jr*
>> >
>> > objectClass: account
>> >
>> > objectClass: posixAccount
>> >
>> > objectClass: top
>> >
>> > userPassword: {crypt}*
>> >
>> > loginShell: /bin/csh
>> >
>> > uidNumber: 1001
>> >
>> > gidNumber: 0
>> >
>> > homeDirectory: /home/*miguel*
>> >
>> > gecos: *Miguel Martins Jr*
>> >
>> >
>> >
>> > dn: uid=*sauron*,ou=Computers,dc=assesc,dc=edu,dc=br
>> >
>> > uid: *sauron*
>> >
>> > cn: *Servidor*
>> >
>> > objectClass: account
>> >
>> > objectClass: posixAccount
>> >
>> > objectClass: top
>> >
>> > userPassword: {crypt}*
>> >
>> > loginShell: /usr/bin/nologin
>> >
>> > uidNumber: 200
>> >
>> > gidNumber: 200
>> >
>> > homeDirectory: noexistent
>> >
>> > gecos: *Servidor *
>> >
>> >
>> >
>> > dn: cn=NextFreeUnixId,dc=assesc,dc=edu,dc=br
>> > objectClass: inetOrgPerson
>> > objectClass: sambaUnixIdPool
>> > uidNumber: 1000
>> > gidNumber: 1000
>> > cn: NextFreeUnixId
>> > sn: NextFreeUnixId
>> >
>> >
>> >
>> > dn: zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
>> > objectClass: top
>> > objectClass: dNSZone
>> > relativeDomainName: *assesc.edu.*br
>> > zoneName: *assesc.edu.*br
>> >
>> >
>> >
>> > dn: relativeDomainName=assesc.com.br,zoneName=assesc.com.br
>> > ,dc=assesc,dc=edu,dc=br
>> > objectClass: top
>> > objectClass: dNSZone
>> > relativeDomainName: *assesc.edu.*br
>> > zoneName: *assesc.edu.*br
>> > dNSTTL: 3600
>> > dNSClass: IN
>> > SOARecord: ns1.*assesc.edu.*br. hostmaster.*assesc.edu.*br. 1 10800 3600
>> > 604800 86400
>> > NSRecord: ns1.*assesc.edu.*br.
>> > NSRecord: ns2.*assesc.edu.*br.
>> > ARecord: *192.168.3.254*
>> > MXRecord: 10 mail.*assesc.edu.*br.
>> >
>> >
>> >
>> > dn: *relativeDomainName=@,zoneName=assesc.com.br
>> ,dc=assesc,dc=edu,dc=br*<relativeDomainName=@,zoneName=pmbebedouro.com.br
>> ,dc=pmbebedouro,dc=com,dc=br>
>> > objectClass: top
>> > objectClass: dNSZone
>> > relativeDomainName: @
>> > zoneName: *assesc.edu.*br
>> > dNSTTL: 3600
>> > dNSClass: IN
>> > SOARecord: ns1.*assesc.edu.*br. hostmaster.*assesc.edu.*br. 1 10800 3600
>> > 604800 86400
>> > NSRecord: ns1.*assesc.edu.*br.
>> > NSRecord: ns2.*assesc.edu.*br.
>> > ARecord: *192.168.3.254*
>> > MXRecord: 10 mail.*assesc.edu.*br.
>> >
>> >
>> >
>> > dn: relativeDomainName=ns1,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
>> > objectClass: top
>> > objectClass: dNSZone
>> > relativeDomainName: ns1
>> > zoneName: *assesc.edu.*br
>> > dNSTTL: 3600
>> > dNSClass: IN
>> > ARecord: *192.168.3.254*
>> >
>> >
>> >
>> > dn: relativeDomainName=ns2,zoneName=assesc.com.br,dc=assesc,dc=edu,dc=br
>> > objectClass: top
>> > objectClass: dNSZone
>> > relativeDomainName: ns2
>> > zoneName: *assesc.edu.*br
>> > dNSTTL: 3600
>> > dNSClass: IN
>> > ARecord: *200.135.16.114*
>> >
>> > dn: relativeDomainName=mail,zoneName=assesc.com.br
>> ,dc=assesc,dc=edu,dc=br
>> > objectClass: top
>> > objectClass: dNSZone
>> > relativeDomainName: mail
>> > zoneName: *assesc.edu.*br
>> > dNSTTL: 3600
>> > dNSClass: IN
>> > ARecord: *192.168.3.254*
>> >
>> >
>> >
>> > dn: relativeDomainName=*sauron*,zoneName=assesc.com.br
>> > ,dc=assesc,dc=edu,dc=br
>> > objectClass: top
>> > objectClass: dNSZone
>> > relativeDomainName: *sauron*
>> > zoneName: *assesc.edu.*br
>> > dNSTTL: 3600
>> > dNSClass: IN
>> > ARecord: *192.168.3.254*
>> > -------------------------
>> > Histórico: http://www.fug.com.br/historico/html/freebsd/
>> > Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>> >
>> -------------------------
>> Histórico: http://www.fug.com.br/historico/html/freebsd/
>> Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>>
> -------------------------
> Histórico: http://www.fug.com.br/historico/html/freebsd/
> Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
>


Mais detalhes sobre a lista de discussão freebsd