[Obm] Accessing & viewing the obm ldap directory using slapcat

Anthony Prades anthony.prades at obm.org
Thu Jan 21 10:10:01 CET 2010


CoolAtt NNA <coolatt at live.com> wrote on 01/20/2010 10:07 AM:
> 
> In "userSystem" table , i found user "ldapadmin" & password "mdP3PaAL"
> 
> In /etc/ldap/slap.conf:
> suffix "dc=local"
> rootdn "uid=ldapadmin,ou=sysusers,dc=local"
> rootpw {SSHA}K29nv.....
> 
> Do I need to regenerate the rootpw using "slappasswd + mdP3PaAL" then 
> replace the rootpw by the
> newly generated password ?

Hi,

This user is used by OBM to update LDAP. If you change password in UserSystem 
table, you need to update 'rootpw' in 'slapd.conf' and restart your LDAP service.

In default configuration, LDAP anonymous access is granted. You could see your 
LDAP entries using : ldapsearch -x -h <LDAP hostname> -b dc=local
You could authenticate using 'ldapadmin' too : ldapsearch -x -h <LDAP hostname> 
-b dc=local -D 'uid=ldapadmin,ou=sysusers,dc=local' -W

Anthony

> 
> Thanks
> CoolAtt
>  
> 
>  > Date: Tue, 19 Jan 2010 11:22:37 +0100
>  > Subject: Re: [Obm] Accessing & viewing the obm ldap directory using 
> slapcat
>  > From: thomas.chemineau at gmail.com
>  > To: coolatt at live.com
>  > CC: obm at list.obm.org
>  >
>  > 2010/1/19 CoolAtt NNA <coolatt at live.com>:
>  > > Hi..
>  > >
>  >
>  > Hi,
>  >
>  > >
>  > > I have been trying to view the contents of the OBM LDAP with no 
> success.
>  > > Am getting the following errors:
>  > >
>  > > /etc/ldap/slapd.conf: line 186: rootdn is always granted unlimited
>  > > privileges.
>  > > /etc/ldap/slapd.conf: line 199: rootdn is always granted unlimited
>  > > privileges.
>  > > /etc/ldap/slapd.conf: line 212: rootdn is always granted unlimited
>  > > privileges.
>  > > /etc/ldap/slapd.conf: line 218: rootdn is always granted unlimited
>  > > privileges.
>  > >
>  >
>  > This is not an error. OpenLDAP tells you that, even if there are ACLs
>  > on the rootdn of your backend, they will not be taken in
>  > consideration. As it is written: rootdn is always granted unlimited ;)
>  >
>  > Maybe you can not access to you LDAP directory because you need a
>  > valid authentication ;) You will find the password corresponding to
>  > the rootdn into OBM (database systemuser, or something like that).
>  >
>  > Tell us what your are trying to do.
>  >
>  > Thomas.
>  >
>  > --
>  > Thomas Chemineau
>  > LemonLDAP::NG - http://lemonldap.ow2.org
> 
> ------------------------------------------------------------------------
> Windows Live: Keep your friends up to date with what you do online. 
> <http://www.microsoft.com/middleeast/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:en-xm:SI_SB_1:092010>
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Obm mailing list
> Obm at list.obm.org
> http://list.obm.org/mailman/listinfo/obm



More information about the Obm mailing list