Quick HOWTO : Ch31 : Centralized Logins Using LDAP and RADIUS - Fails on Fedora 6 + debug info

Jacob Jarick mem.namefix at gmail.com
Wed Apr 18 06:33:46 CEST 2007


Just added debug output to help.

Fedora 6, openldap rpms installed via smart package manager.

slapd.conf: http://pastebin.ca/445851
tfxschool.internal.lidf: http://pastebin.ca/445852
root.ldif: http://pastebin.ca/445854
ldapusers.ldif: http://pastebin.ca/445855

"ldapadd -d9 -x -D "cn=Manager,dc=tfxschool,dc=internal" -W -f
/etc/openldap/tfxschool.internal.ldif" -> http://pastebin.ca/445899

I decided to try setting up openldap in hopes of learning more about
my error. I followed this howto
http://www.linuxhomenetworking.com/wiki/index.php/Quick_HOWTO_:_Ch31_:_Centralized_Logins_Using_LDAP_and_RADIUS
step by step and rechecked all configs etc when I got the following
error.

[root at fedora ~]# ldapadd -x -D "cn=Manager,dc=tfxschool,dc=internal"
-W -f /etc/openldap/tfxschool.internal.ldif
Enter LDAP Password:
ldap_bind: Invalid credentials (49)
        additional info: 80090308: LdapErr: DSID-0C090334, comment:
AcceptSecurityContext error, data 525, vece

It seems to be similar if not the same problem I am having with FR
refusing to auth via ldap to our ADS server. I am stuck though I have
no idea how to resolve this error and unfortunately the howto assumes
it just works.

Google suggests that it may be the result of my domain string
dc=tfxschool,dc=interternal,  which looks correct to me. Our test
domain is tfxschool.internal . any help / suggestions/ insight would
be greatly appreciated.

Thanks.



More information about the Freeradius-Users mailing list