fosiul01
asked on
HOw to modify Ldap Record
Hi, i am new in LDAP so may be i used wrong header for the questions.
I followed this http://www.grennan.com/ldap-HOWTO.html to configure Ldap server. and its works
from client pc, I am using user from server, i can connect .
but problem is, its saying :
NO direcotry /home/user1
(1)
how can i edit the existing one and add home directory for user
(2) One thing i realized, if i change the password for user1, and if i try to access with that new password, it does not work, i have to use the old password what i have used at time of migrate_password.pl
please help me to solve this..
if you think 2 questions is 2 diffrent issue then i will open another quesition for the password one.
I followed this http://www.grennan.com/ldap-HOWTO.html to configure Ldap server. and its works
from client pc, I am using user from server, i can connect .
but problem is, its saying :
NO direcotry /home/user1
(1)
how can i edit the existing one and add home directory for user
(2) One thing i realized, if i change the password for user1, and if i try to access with that new password, it does not work, i have to use the old password what i have used at time of migrate_password.pl
please help me to solve this..
if you think 2 questions is 2 diffrent issue then i will open another quesition for the password one.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
$ ldapmodify
dn: uid=donald.duck,ou=People, dc=example ,dc=com
changetype:modify
replace:homeDirectory
homeDirectory:/home/donald duck
^Z
dn: uid=donald.duck,ou=People,
changetype:modify
replace:homeDirectory
homeDirectory:/home/donald
^Z
ASKER
omm hi,
i am typing ldapmodify
then when i am presing enter
its asking for password,
after pressing password,
its saying
ldap_sasl_interactive_bind _s: Internal (implementation specific) error (80)
additional info: SASL(-13): user not found: no secret in database
i am typing ldapmodify
then when i am presing enter
its asking for password,
after pressing password,
its saying
ldap_sasl_interactive_bind
additional info: SASL(-13): user not found: no secret in database
ASKER
check this commmand
[root@localhost ~]# ldapsearch -x -b 'dc=mydomain,dc=com' 'objectclass=*' | grep yusuf
# yusuf, People, mydomain.com
dn: uid=yusuf,ou=People,dc=myd omain,dc=c om
uid: yusuf
cn: yusuf
homeDirectory: /home/yusuf
# yusuf, Group, mydomain.com
dn: cn=yusuf,ou=Group,dc=mydom ain,dc=com
cn: yusuf
according to this, its saying /home/yusuf is there,
so home directory is there, then why its saying its does not appear to exist ??
[root@localhost ~]# ldapsearch -x -b 'dc=mydomain,dc=com' 'objectclass=*' | grep yusuf
# yusuf, People, mydomain.com
dn: uid=yusuf,ou=People,dc=myd
uid: yusuf
cn: yusuf
homeDirectory: /home/yusuf
# yusuf, Group, mydomain.com
dn: cn=yusuf,ou=Group,dc=mydom
cn: yusuf
according to this, its saying /home/yusuf is there,
so home directory is there, then why its saying its does not appear to exist ??
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
HI sorry for late reply
but my first problem is, ldap user unable to get the home direcotry
and from my previous post you can see, in ldap server, home directory is defined
then why its unable to get the direcotry ??
but my first problem is, ldap user unable to get the home direcotry
and from my previous post you can see, in ldap server, home directory is defined
then why its unable to get the direcotry ??
What have you got in the file
/etc/nsswitch.conf
It should be something like :
passwd: files ldap
group: files ldap
shadow: files ldap
This means for each one use the local file first and then the ldap server after. You then need to remove the local users you have moved over or it will use the local references. Maybe backup your files before starting this step :)
You can swap the ldap / file bit round to use ldap first but you should not remove the 'file' bit in case you loose contact with the ldap server. You should keep 'file' and make sure you do have a local root or admin type user to take control back if needed.
/etc/nsswitch.conf
It should be something like :
passwd: files ldap
group: files ldap
shadow: files ldap
This means for each one use the local file first and then the ldap server after. You then need to remove the local users you have moved over or it will use the local references. Maybe backup your files before starting this step :)
You can swap the ldap / file bit round to use ldap first but you should not remove the 'file' bit in case you loose contact with the ldap server. You should keep 'file' and make sure you do have a local root or admin type user to take control back if needed.
ASKER
HI, currently /etc/nsswitch.conf is like this as you said
passwd: files ldap
group: files ldap
shadow: files ldap
so you said, i should write like this
passwd: ldap
group: ldap
shadow: ldap
passwd: files ldap
group: files ldap
shadow: files ldap
so you said, i should write like this
passwd: ldap
group: ldap
shadow: ldap
ASKER
HI,
i have solve the problem of home direcotry sharing.
i had to configure NFS server and had to share /home direcotry with that,
now its fine.
http://fedoranews.org/mediawiki/index.php/How_to_setup_and_maintain_OpenLDAP_server_for_your_network#Testing
now only answer i need, how to change pasword.
let me try what ricardoelena said
i have solve the problem of home direcotry sharing.
i had to configure NFS server and had to share /home direcotry with that,
now its fine.
http://fedoranews.org/mediawiki/index.php/How_to_setup_and_maintain_OpenLDAP_server_for_your_network#Testing
now only answer i need, how to change pasword.
let me try what ricardoelena said
ASKER
i am working on runlevel 3, i just got command line
so is there any command to do this ??