William, thanks for responding. In the original command string I used -w redhat123 instead of -W which causes a prompt for the password. In both cases, I got the same error. -----Original Message----- From: William Brown [mailto:wbrown@xxxxxxx] Sent: Monday, September 23, 2019 18:12 To: 389-users@xxxxxxxxxxxxxxxxxxxxxxx Subject: [389-users] Re: Configuring the 389-ds-base on Fedora 30 > On 24 Sep 2019, at 09:46, rtbell@xxxxxxxxxxxxxxxxxxx <rtbell@xxxxxxxxxxxxxxxxxxx> wrote: > > I have hit a roadblock and would appreciate any help I can get. I am running in a VM Workstation virtualization platform on a Windows 10 host machine. > > I created a LAMP version of Fedora 30 using mariadb instead of mysql. I changed the host name to cn-poc-pki.granitemountain.com rebooted the system and verified that the host name was correct. I added cn-poc-pki.granitemountain.com to the hosts table and rebooted again. I then used dnf install 389-ds-base to retrieve the 389-ds subsystem. I used dscreate create-template ds.tmp to create a template. I used vim to update the fields in the template file I am attaching the template file. > > When I try to assert an ldapadd –h $HOSTNAME –x –D “cn=DirectoryManager” –W <<EOF with a number of additional parameters, I get an ldap_bind: Invalid credentials (49) error message. Obviously I have misconfigured something but I have been unable to discover what it might be. Could some of you experts please look at my configuration and tell me what I screwed up, please? Hey there, I wonder if you try something like: ldapadd -f /path/to/file/of/changes -h $HOSTNAME -x -D 'cn=Directory Manager' -W If that works. I think that -W prompts, so right now you are echoing your changes as the password perhaps. Hope that helps > > Bob Bell > > Granite Mountain Security Consultancy, LLC. > 90 W 500 South, #404 > Bountiful UT 84010 > > 801-971-4200 (cell) > rtbell@xxxxxxxxxxxxxxxxxxx > > "Beware the engineers of society, I say, who would make everyone in > all the world equal. > Opportunity should be equal, must be equal, but achievement must > remain individual.” > ---Drizzt Do’Urden > > > > <ds.tmp>_______________________________________________ > 389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx To > unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: > https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedoraproject.org/archives/list/389-users@lists.fedorapr > oject.org — Sincerely, William Brown Senior Software Engineer, 389 Directory Server SUSE Labs _______________________________________________ 389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ 389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx
