Page 2 of 2 FirstFirst 12
Results 11 to 19 of 19

Thread: external auth

  1. #11
    Join Date
    May 2006
    Posts
    81
    Rep Power
    9

    Default

    It just says ERROR : Failed to start slapd .

    Only other thing I could find is in zimbra.log :

    May 29 19:10:03 localhost zimbramon[3603]: 3603:info: 2006-05-29 19:10:02, DISK: localhost.localdomain: dev: /dev/hda7, mp: /, tot: 7251, avail: 3738
    May 29 19:10:03 localhost zimbramon[3603]: 3603:info: 2006-05-29 19:10:02, DISK: localhost.localdomain: dev: /dev/hda6, mp: /boot, tot: 99, avail: 83
    May 29 19:10:03 localhost zimbramon[3600]: 3600:info: 2006-05-29 19:10:02, QUEUE: 0 0
    May 29 19:10:03 localhost sendmail[3656]: k4U2A2Ff003656: from=zimbra, size=313, class=0, nrcpts=1, msgid=<200605300210.k4U2A2Ff003656@localhost.local domain>, relay=zimbra@localhost
    May 29 19:10:03 localhost sendmail[3656]: k4U2A2Ff003656: to=zimbra, ctladdr=zimbra (500/500), delay=00:00:01, xdelay=00:00:00, mailer=relay, pri=30313, relay=[127.0.0.1] [127.0.0.1], dsn=4.0.0, stat=Deferred: Connection refused by [127.0.0.1]
    May 29 19:10:05 localhost zimbramon[3604]: 3604:info: 2006-05-29 19:10:02, STATUS: : Cannot: determine
    May 29 19:12:02 localhost zimbramon[3706]: 3706:info: 2006-05-29 19:12:01, STATUS: : Cannot: determine

  2. #12
    Join Date
    Aug 2005
    Location
    San Mateo, CA
    Posts
    4,789
    Rep Power
    19

    Default

    How about if you start ldap like:

    sh -x /opt/zimbra/bin/ldap start
    Looking for new beta users -> Co-Founder of Acompli. Previously worked at Zimbra (and Yahoo! & VMware) since 2005.

  3. #13
    Join Date
    May 2006
    Posts
    81
    Rep Power
    9

    Default

    zimbra.log then shows 'Address already in use ' :

    May 30 19:22:06 localhost zimbramon[3507]: 3507:info: 2006-05-30 19:22:02, STATUS: : Cannot: determine
    May 30 19:22:14 localhost slapd[3563]: @(#) $OpenLDAP: slapd 2.3.21 (May 3 2006 10:18:43) $ root@build-fc3.liquidsys.com:/home/build/p4/CRAY/ThirdParty/openldap/openldap-2.3.21/servers/slapd
    May 30 19:22:14 localhost slapd[3563]: daemon: bind(7) failed errno=98 (Address already in use)
    May 30 19:22:14 localhost slapd[3563]: slapd stopped.
    May 30 19:22:14 localhost slapd[3563]: connections_destroy: nothing to destroy.
    May 30 19:24:03 localhost zimbramon[3645]: 3645:info: 2006-05-30 19:24:01, STATUS: : Cannot: determine

    -----------------------------------------------------------------------------------------------
    The command itself ( sh -x /opt/zimbra/bin/ldap start ) has output :

    + PID=
    + PIDFILE=/opt/zimbra/openldap/var/run/slapd.pid
    + mkdir -p /opt/zimbra/openldap/var/run/
    + case "$1" in
    + start
    + checkrunning
    + getpid
    + '[' -f /opt/zimbra/openldap/var/run/slapd.pid ']'
    + '[' x = x ']'
    + RUNNING=0
    + '[' 0 = 0 ']'
    + '[' '!' -f /opt/zimbra/openldap-data/DB_CONFIG ']'
    + /opt/zimbra/libexec/zmconfigure /opt/zimbra/conf/slapd.conf.in /opt/zimbra/conf/slapd.conf
    + sudo /opt/zimbra/openldap-2.3.21/libexec/slapd -l LOCAL0 -4 -u zimbra -h ldap://:389/ -f /opt/zimbra/conf/slapd.conf
    + sleep 2
    + getpid
    + '[' -f /opt/zimbra/openldap/var/run/slapd.pid ']'
    + '[' x = x ']'
    + echo 'ERROR - failed to start slapd'
    ERROR - failed to start slapd
    + echo ''

    + exit 1

    -------------------------------------

  4. #14
    Join Date
    Aug 2005
    Location
    San Mateo, CA
    Posts
    4,789
    Rep Power
    19

    Default

    That means your LDAP server really is still running on the ports Zimbra's LDAP needs (637, 389) are the two I think we use.
    Looking for new beta users -> Co-Founder of Acompli. Previously worked at Zimbra (and Yahoo! & VMware) since 2005.

  5. #15
    Join Date
    May 2006
    Posts
    81
    Rep Power
    9

    Default

    I think I have my sldap fixed now to run on port 390 ... zimbra starts without error .

    Still in admin console I get
    Authentication failed. Invalid Credentials ( bad dn/password )
    javax.naming.AuthenticationException : empty search .

  6. #16
    Join Date
    May 2006
    Posts
    81
    Rep Power
    9

    Default

    Do I need the zimbra schema in my ldap ? Do I need TLS , SSL etc. ? Is this maybe what I am missing ? Looks like this is a nut I won't be able to crack ...

  7. #17
    Join Date
    Aug 2005
    Location
    San Mateo, CA
    Posts
    4,789
    Rep Power
    19

    Default

    No your LDAP doesn't need the Zimbra schema. The only time zimbra will use your LDAP is when we are doing auth. No other times.
    Looking for new beta users -> Co-Founder of Acompli. Previously worked at Zimbra (and Yahoo! & VMware) since 2005.

  8. #18
    Join Date
    May 2006
    Posts
    81
    Rep Power
    9

    Default

    Well , how does it do authorization ? ... it must be expecting a certain type of schema I would think . Maybe the schema I have now is not compatible ?

    If that's all there is to it then I don't know what else could be the problem .
    The stuff I put into the authorization configuration looks OK to you then ?

  9. #19
    Join Date
    Aug 2005
    Location
    San Mateo, CA
    Posts
    4,789
    Rep Power
    19

    Default

    It does an LDAP bind and then runs the LDAP filter you provide. So assuming you have cn=[user id] it should work.
    Looking for new beta users -> Co-Founder of Acompli. Previously worked at Zimbra (and Yahoo! & VMware) since 2005.

Similar Threads

  1. Switching from Internal Auth to External Active Directory
    By MindexAdmin in forum Installation
    Replies: 5
    Last Post: 07-19-2007, 11:14 AM
  2. Migrating to External LDAP questions and directions
    By DVan in forum Administrators
    Replies: 0
    Last Post: 06-01-2007, 01:51 PM
  3. LDAP External Auth Fedora Directory Services
    By prpatrol in forum Administrators
    Replies: 3
    Last Post: 08-14-2006, 06:00 PM
  4. External authentification within a local network
    By Nico in forum Administrators
    Replies: 2
    Last Post: 06-06-2006, 04:02 AM
  5. Enable SMTP Auth to external users
    By VictorMedina in forum Administrators
    Replies: 1
    Last Post: 05-24-2006, 10:06 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •