[Bug 340912] New: Wrong protocol in kerberos-module yast
https://bugzilla.novell.com/show_bug.cgi?id=340912 Summary: Wrong protocol in kerberos-module yast Product: openSUSE 10.3 Version: Final Platform: 32bit OS/Version: openSUSE 10.3 Status: NEW Severity: Blocker Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: georg.schilling@sar.de QAContact: jsrain@novell.com Found By: Customer While configuring kerberos-server in yast (ncurses) there is an failure in LDAP-Server-URL. Go to YaST --> Network Services --> KerberosServer, when you integrate Kerberos in a existing LDAP-Server (localhost), you have to insert some informations e.g. Server, DN etc. While expecting ldap(s)://127.0.0.1 as Server-URL yast-module inserts https://127.0.0.1. By this saving of configuration fails. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=340912#c1
--- Comment #1 from Georg Schilling
https://bugzilla.novell.com/show_bug.cgi?id=340912
Martin Mrazik
https://bugzilla.novell.com/show_bug.cgi?id=340912#c2
Michael Calmer
https://bugzilla.novell.com/show_bug.cgi?id=340912#c3
Michael Calmer
Can't contact LDAP server while initializing database
ldaps is LDAP over SSL on port 636. If you use the suse openldap server this feature is not enabled by default. Please have a look at /etc/sysconfig/openldap . Set: OPENLDAP_START_LDAPS="yes" and restart the ldapserver. But for a local connection ldapi:// might be the better way. See Comment #2. Closing this bug as invalid, because a missconfigured ldapserver seems to be the root of the problem. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=340912#c4
Georg Schilling
https://bugzilla.novell.com/show_bug.cgi?id=340912#c5
Georg Schilling
https://bugzilla.novell.com/show_bug.cgi?id=340912#c6
--- Comment #6 from Georg Schilling
https://bugzilla.novell.com/show_bug.cgi?id=340912#c7
--- Comment #7 from Georg Schilling
https://bugzilla.novell.com/show_bug.cgi?id=340912#c8
Michael Calmer
https://bugzilla.novell.com/show_bug.cgi?id=340912#c9
--- Comment #9 from Georg Schilling
https://bugzilla.novell.com/show_bug.cgi?id=340912#c10
Georg Schilling
https://bugzilla.novell.com/show_bug.cgi?id=340912#c11
--- Comment #11 from Michael Calmer
https://bugzilla.novell.com/show_bug.cgi?id=340912#c12
--- Comment #12 from Georg Schilling
Which ldap server do you use? openldap?
yes, openldap kerberos1:/tmp # rpm -qa | grep ldap yast2-ldap-2.15.1-83 openldap2-client-2.3.37-20 yast2-ldap-client-2.15.12-37 nss_ldap-257-17 yast2-ldap-server-2.15.5-76 krb5-plugin-kdb-ldap-1.6.2-5 ldapcpplib-0.0.4-96 pam_ldap-184-49 openldap2-2.3.37-7
Is there something in the ldap server logs?
Set loglevel to 2048. Have a look at the uploaded file. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=340912#c13
--- Comment #13 from Georg Schilling
https://bugzilla.novell.com/show_bug.cgi?id=340912#c14
--- Comment #14 from Michael Calmer
https://bugzilla.novell.com/show_bug.cgi?id=340912#c15
--- Comment #15 from Georg Schilling
Do you have added the kerberos.schema to the ldap server?
*grmpf*
/etc/openldap/slapd.conf: include /usr/share/doc/packages/krb5/kerberos.schema
add this line and restart the ldapserver.
Works fine. YaST finished successfully. For the records: As far as I can remember schemes were installed "on the fly" - only then when new features (eg SAMBA) are installed. Am I wrong? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=340912#c16
--- Comment #16 from Michael Calmer
https://bugzilla.novell.com/show_bug.cgi?id=340912#c17
Michael Calmer
participants (1)
-
bugzilla_noreply@novell.com