ubuntu 16.04 openldap 配置过程两个疑问,olcIndex和添加证书
发表于 : 2017-06-21 0:53
https://help.ubuntu.com/16.04/servergui ... erver.html
我是照着官方文档配置的。数据库选的bdb
第一个:
建Ldif文件:
Create a file, call it uid_index.ldif, with the following contents:
dn: olcDatabase={1}bdb,cn=config
add: olcDbIndex
olcDbIndex: uid eq,pres,sub
Then issue the command:
运行语句:
sudo ldapmodify -Q -Y EXTERNAL -H ldapi:/// -f uid_index.ldif
报错:
olcIndex
modify entry "olcDatabase={1}bdb,cn=config"
ldap_modify: Other(e.g.,implementation specific) error(80)
additional info:duplicate index definition for attr "uid"
好像是不能添加多个属性
第二个:
建Ldif文件
Create the file /etc/ssl/certinfo.ldif with the following contents (adjust accordingly):
dn: cn=config
add: olcTLSCACertificateFile
olcTLSCACertificateFile: /etc/ssl/certs/cacert.pem
-
add: olcTLSCertificateFile
olcTLSCertificateFile: /etc/ssl/certs/ldap02_slapd_cert.pem
-
add: olcTLSCertificateKeyFile
olcTLSCertificateKeyFile: /etc/ssl/private/ldap02_slapd_key.pem
之后运行这条语句:
Configure the slapd-config database:
sudo ldapmodify -Y EXTERNAL -H ldapi:/// -f certinfo.ldif
报错:
SASL/EXTERNAL authentication started
SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
SASL SSF: 0
modifying entry "cn=config"
ldap_modify: Other(e.g.,implementation specific) error(80)
求解,谢谢
我是照着官方文档配置的。数据库选的bdb
第一个:
建Ldif文件:
Create a file, call it uid_index.ldif, with the following contents:
dn: olcDatabase={1}bdb,cn=config
add: olcDbIndex
olcDbIndex: uid eq,pres,sub
Then issue the command:
运行语句:
sudo ldapmodify -Q -Y EXTERNAL -H ldapi:/// -f uid_index.ldif
报错:
olcIndex
modify entry "olcDatabase={1}bdb,cn=config"
ldap_modify: Other(e.g.,implementation specific) error(80)
additional info:duplicate index definition for attr "uid"
好像是不能添加多个属性
第二个:
建Ldif文件
Create the file /etc/ssl/certinfo.ldif with the following contents (adjust accordingly):
dn: cn=config
add: olcTLSCACertificateFile
olcTLSCACertificateFile: /etc/ssl/certs/cacert.pem
-
add: olcTLSCertificateFile
olcTLSCertificateFile: /etc/ssl/certs/ldap02_slapd_cert.pem
-
add: olcTLSCertificateKeyFile
olcTLSCertificateKeyFile: /etc/ssl/private/ldap02_slapd_key.pem
之后运行这条语句:
Configure the slapd-config database:
sudo ldapmodify -Y EXTERNAL -H ldapi:/// -f certinfo.ldif
报错:
SASL/EXTERNAL authentication started
SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
SASL SSF: 0
modifying entry "cn=config"
ldap_modify: Other(e.g.,implementation specific) error(80)
求解,谢谢