Vsevolod (Simon) Ilyushchenko wrote: > Rich, > > Thanks for the quick answer! Perhaps this information should go into > the FAQ - what do you think? > > Rich Megginson wrote on 07/13/2005 12:47 PM: > >> The IETF LDAP community has decided to deprecated them in favor of >> the new netgroups stuff. > > > OK, I'll reconfigure my entries. Does Fedora automounter understand > the netgroups structure? I'm trying to find out some information about this. > >> We don't yet have a way to set an ACI to allow users other than the >> Directory Manager (i.e. cn=Directory Manager, not the admin console >> user) to create the entry for a root suffix. In the console, you can >> Log In As New User, and specify cn=directory manager (or whatever you >> used for your directory manager user when you performed the initial >> installation). > > > This is very non-trivial. :) Creating the root suffix now works, but I > tried creating top-level entries one by one, as well as creating a new > server in the administration console, and it all failed. I had to > delete the RPM and reinstall it. What problems did you have? I'm not sure what you did, or what you could have done to necessitate a reinstall. > > By the way, I found out that if I install the RPM a second time, the > admin console tries to connect to port 15918, but the admin server is > running on port 25394. I don't remember what port was used the first > time. :( After uninstall, remove your ~/.mcc directory, or edit the file in there after installation. The URL box in the login screen should have had a drop down list to let you select another one. > > This time I successfully created an SSL-enabled directory and was able > to authenticate to it. I followed the steps here: > http://www.redhat.com/docs/manuals/dir-server/ag/7.1/ssl.html#1087158 > to create a self-signed certificate. > > For archives - the docs don't tell you that after running pk12util in > step 9 you first have to enter the password 'secretpwd' that you've > saved in the file pwdfile.txt, and then you have to create a different > startup password. You can't use the same password? > Later, when you start the server on the command line, this second > password is required. > > Simon -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3312 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.fedoraproject.org/pipermail/389-users/attachments/20050713/37ada666/attachment.bin
