Re: New install, not authenticating

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hendry, Chris wrote:
Just did a yum install fedora-ds
My thinking was that I did not care about the data, this was considered
the backup anyway.
Just doing yum install fedora-ds should break just about everything until migrate-ds-admin.pl is run - or at least, if you use the old scripts and such to start and manage fedora ds, you won't be using the 1.1 software.
I made sure the passwords would match, I several times set the password
using the gui console.
I'm not sure what's going on, but error 49 very clearly means invalid password.
Chris


-----Original Message-----
From: Rich Megginson [mailto:rmeggins@xxxxxxxxxx] Sent: Thursday, February 07, 2008 3:51 PM
To: General discussion list for the Fedora Directory server project.
Subject: Re:  New install, not authenticating

Hendry, Chris wrote:
        Upgraded Fedora-ds-1.1 from 1.0.

How?  What exactly did you do?
        Version 1.0 worked great, no problems, I upgraded, ran the
        setup-ds-admin.pl in the most default way.

setup-ds-admin.pl is only for new servers. You should use migrate-ds-admin.pl to upgrade from 1.0.4 to 1.1.
        Clients can not login when pointing to this new DS.

        Focus line in /var/log/dirsrv/slapd-servername/access

         [07/Feb/2008:14:24:01 -0500] conn=172 op=1 RESULT err=49
        tag=97 nentries=0 etime=0

        |tag=97| for a result from a client bind operation

        err=49 = invalid credentials

Invalid credentials means the given password is incorrect.
        Entire log:

        [07/Feb/2008:14:24:01 -0500] conn=169 fd=71 slot=71 connection
        from 10.188.49.187 to 10.188.135.186

        [07/Feb/2008:14:24:01 -0500] conn=169 op=-1 fd=71 closed - B1

        [07/Feb/2008:14:24:01 -0500] conn=170 fd=71 slot=71 connection
        from 10.188.49.187 to 10.188.135.186

        [07/Feb/2008:14:24:01 -0500] conn=170 op=0 BIND dn=""
        method=128 version=3

        [07/Feb/2008:14:24:01 -0500] conn=170 op=0 RESULT err=0 tag=97
        nentries=0 etime=0 dn=""

        [07/Feb/2008:14:24:01 -0500] conn=170 op=1 SRCH
        base="dc=post,dc=cnn" scope=2

filter="(&(|(objectClass=posixAccount)(objectClass=inetOrgPerson)(object
Class=shadowAccount))(|(|(uid=dme))(|(cn=dme))))"
        attrs="homeDirectory userPassword gidNumber cn uid cn
        uidNumber loginShell"

        [07/Feb/2008:14:24:01 -0500] conn=170 op=1 RESULT err=0
        tag=101 nentries=1 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=170 op=2 SRCH
        base="dc=post,dc=cnn" scope=2

filter="(&(|(objectClass=posixAccount)(objectClass=inetOrgPerson)(object
Class=shadowAccount))(|(uidNumber=8000)))"
        attrs="uidNumber uid cn gidNumber"

        [07/Feb/2008:14:24:01 -0500] conn=170 op=2 RESULT err=0
        tag=101 nentries=1 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=170 op=3 SRCH
        base="dc=post,dc=cnn" scope=2
        filter="(&(|(objectClass=posixGroup))(|(gidNumber=8000)))"
        attrs="cn gidNumber"

        [07/Feb/2008:14:24:01 -0500] conn=170 op=3 RESULT err=0
        tag=101 nentries=0 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=170 op=4 SRCH
        base="dc=post,dc=cnn" scope=2
        filter="(&(|(objectClass=posixGroup))(|(memberUid=dme)))"
        attrs="cn gidNumber"

        [07/Feb/2008:14:24:01 -0500] conn=170 op=4 RESULT err=0
        tag=101 nentries=0 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=170 op=5 SRCH
        base="dc=post,dc=cnn" scope=2

filter="(&(|(objectClass=posixGroup))(|(cn=FFFFEEEE-DDDD-CCCC-BBBB-AAAA0
0001F40)))"
        attrs="cn gidNumber"

        [07/Feb/2008:14:24:01 -0500] conn=170 op=5 RESULT err=0
        tag=101 nentries=0 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=170 op=6 SRCH
        base="dc=post,dc=cnn" scope=2

filter="(&(|(objectClass=posixAccount)(objectClass=inetOrgPerson)(object
Class=shadowAccount))(|(|(uid=dme))(|(cn=dme))))"
        attrs="uid cn userPassword cn homeDirectory loginShell
        uidNumber gidNumber shadowLastChange shadowExpire"

        [07/Feb/2008:14:24:01 -0500] conn=170 op=6 RESULT err=0
        tag=101 nentries=1 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=170 op=7 SRCH
        base="dc=post,dc=cnn" scope=2

filter="(&(|(objectClass=posixAccount)(objectClass=inetOrgPerson)(object
Class=shadowAccount))(|(|(uid=dme))(|(cn=dme))))"
        attrs="uid cn"

        [07/Feb/2008:14:24:01 -0500] conn=170 op=7 RESULT err=0
        tag=101 nentries=1 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=170 op=8 SRCH
        base="dc=post,dc=cnn" scope=2

filter="(&(|(objectClass=posixAccount)(objectClass=inetOrgPerson)(object
Class=shadowAccount))(|(uid=dme)(cn=dme)))"
        attrs="userPassword"

        [07/Feb/2008:14:24:01 -0500] conn=170 op=8 RESULT err=0
        tag=101 nentries=1 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=170 op=9 SRCH
        base="dc=post,dc=cnn" scope=2

filter="(&(|(objectClass=posixAccount)(objectClass=inetOrgPerson)(object
Class=shadowAccount))(|(uid=dme)(cn=dme)))"
        attrs=ALL

        [07/Feb/2008:14:24:01 -0500] conn=170 op=9 RESULT err=0
        tag=101 nentries=1 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=171 fd=72 slot=72 connection
        from 10.188.49.187 to 10.188.135.186

        [07/Feb/2008:14:24:01 -0500] conn=171 op=-1 fd=72 closed - B1

        [07/Feb/2008:14:24:01 -0500] conn=172 fd=72 slot=72 connection
        from 10.188.49.187 to 10.188.135.186

        [07/Feb/2008:14:24:01 -0500] conn=172 op=0 BIND dn=""
        method=sasl version=3 mech=CRAM-MD5

        [07/Feb/2008:14:24:01 -0500] conn=172 op=0 RESULT err=14
        tag=97 nentries=0 etime=0, SASL bind in progress

        [07/Feb/2008:14:24:01 -0500] conn=172 op=1 BIND dn=""
        method=sasl version=3 mech=CRAM-MD5

        [07/Feb/2008:14:24:01 -0500] conn=172 op=1 RESULT err=49
        tag=97 nentries=0 etime=0

        [07/Feb/2008:14:24:01 -0500] conn=172 op=2 UNBIND

        [07/Feb/2008:14:24:01 -0500] conn=172 op=2 fd=72 closed - U1


------------------------------------------------------------------------
--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users


--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users

<<attachment: smime.p7s>>

--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users

[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux