Sorry we lost some posts because of database errors!

*New 12.1 series Release:
2020-09-01: XigmaNAS 12.1.0.4.7728 - released

*New 11.4 series Release:
2020-08-27: XigmaNAS 11.4.0.4.7718 - released!


We really need "Your" help on XigmaNAS https://translations.launchpad.net/xigmanas translations. Please help today!

Producing and hosting XigmaNAS costs money. Please consider donating for our project so that we can continue to offer you the best.
We need your support! eg: PAYPAL

OpenLdap in Jail

Authenticating XigmaNAS users using LDAP.
Forum rules
Set-Up GuideFAQsForum Rules
Post Reply
User avatar
velivole18
Forum Moderator
Forum Moderator
Posts: 650
Joined: 14 Jul 2012 20:23
Location: France
Status: Offline

OpenLdap in Jail

#1

Post by velivole18 »

Hi,

On the French forum, laster13 and myself (velivole18) OpenLdap trying to install a server in a jail and to cooperate with the ldap server Nas4Free.
2 problems:
- Install and run the OpenLdap server (I am thinking that it's OK)
- To cooperate and Nas4Free OpenLdap (this is the problem!)

We wanted to implement very simply, with a minimalist conf jail, just with OpenLdap (without phpldapadmin without web server).

1 - installation of a new Nas4Free TheBrig jail and a dedicated OpenLdap.

2 - on empty and clean jail, installation OpenLdap: pkg_add -r openldap24-server

3 - Add the following lines as shown in the footsteps of installing OpenLdap in the file "/etc/rc.conf" :

Code: Select all

slapd_enable="YES"
slapd_flags='-h "ldapi://%2fvar%2frun%2fopenldap%2fldapi/ ldap://192.168.0.61/"'
slapd_sockets="/var/run/openldap/ldapi"
4 - I look at the conf. basis of "/usr/local/etc/openldap/slapd.conf" file without touching anything, to be able to see information in the HMI WebGui of Nas4Free for Ldap Service:

Code: Select all

suffix          "dc=my-domain,dc=com"
rootdn          "cn=Manager,dc=my-domain,dc=com"
rootpw          secret
5 - Start server OpenLdap : /usr/local/etc/rc.d/slapd start
server start without problem ...

Code: Select all

root@OpenLdap:/ # ps -ax
 PID TT  STAT    TIME COMMAND
4805 ??  SsJ  0:00.09 /usr/sbin/syslogd -ss
4860 ??  IsJ  0:00.04 /usr/sbin/cron -J 15 -s
6894 ??  IsJ  0:00.74 /usr/local/libexec/slapd -h ldapi://%2fvar%2frun%2fopenldap%2fldapi/ ldap://192.168.0.61/ -u ldap -g ldap
4905  0  SJ   0:00.15 csh
7708  0  R+J  0:00.01 ps -ax
root@OpenLdap:/ # 
6 - In Nas4Free, I complete service access Ldap (see screenshot) and I active.

7 - In log of Nas4Free, this :

Code: Select all

Dec 27 14:04:39 	nas4free-labo 	root: nsswitch service started
Dec 27 14:04:38 	nas4free-labo 	root: ldap service executed
Dec 27 14:04:38 	nas4free-labo 	root: pam service executed
Dec 27 14:04:37 	nas4free-labo 	mountd[2072]: bad opt mask
Dec 27 14:04:37 	nas4free-labo 	mountd[2072]: bad opt mask
7 - In sockets list ("Diagnostics|Informations|Sockets"), I can read connections with Ldap :

Code: Select all

Sockets

Active Internet connections (including servers)
Tcpcb    Proto Recv-Q Send-Q Local Address      Foreign Address    (state)
95d81000 tcp4       0      0 nas4free-lab.http  192.168.0.48.44078 ESTABLISHED
95c9d270 tcp4       0      0 nas4free-lab.http  192.168.0.48.44077 TIME_WAIT
95c9d2a4 tcp4       0      0 nas4free-lab.http  192.168.0.48.44075 TIME_WAIT
95bd0000 tcp4       0      0 192.168.0.61.ldap  *.*                LISTEN
95d81810 tcp4       0      0 nas4free-labo.3231 nas4free.nut       ESTABLISHED
95bd02b0 tcp4       0      0 nas4free-lab.ssh   192.168.0.48.46849 ESTABLISHED
95bd0560 tcp4       0      0 nas4free-lab.http  *.*                LISTEN
95bd0810 tcp4       0      0 *.ssh              *.*                LISTEN
95bd0ac0 tcp6       0      0 *.ssh              *.*                LISTEN
95b7b2b0 tcp46      0      0 *.ftp              *.*                LISTEN
95b7b810 tcp4       0      0 *.8080             *.*                LISTEN
95b7bac0 tcp4       0      0 *.760              *.*                LISTEN
95b8e000 tcp6       0      0 *.712              *.*                LISTEN
95b8e2b0 tcp4       0      0 *.739              *.*                LISTEN
95b8e560 tcp6       0      0 *.739              *.*                LISTEN
95b7b000 tcp6       0      0 *.nfsd             *.*                LISTEN
95b7aac0 tcp4       0      0 *.nfsd             *.*                LISTEN
95b7a000 tcp4       0      0 *.ipp              *.*                LISTEN
95b7a2b0 tcp6       0      0 *.ipp              *.*                LISTEN
95b7a560 tcp4       0      0 *.sunrpc           *.*                LISTEN
95b7a810 tcp6       0      0 *.sunrpc           *.*                LISTEN
95ab12f4 udp4       0      0 *.mdns             *.*
95ab16e4 udp4       0      0 *.47885            *.*
95ab05e8 udp4       0      0 *.642              *.*
95ab06e4 udp6       0      0 *.695              *.*
95ab0ad4 udp6       0      0 *.620              *.*
95ab0ccc udp4       0      0 *.*                *.*
95ab08dc udp4       0      0 *.739              *.*
95ab09d8 udp6       0      0 *.739              *.*
95ab07e0 udp6       0      0 *.nfsd             *.*
95ab0000 udp4       0      0 *.nfsd             *.*
95ab0dc8 udp4       0      0 *.ipp              *.*
95ab1000 udp6       0      0 *.631              *.*
95ab0bd0 udp6       0      0 *.*                *.*
95ab04ec udp4       0      0 *.669              *.*
95ab03f0 udp4       0      0 *.sunrpc           *.*
95ab01f8 udp6       0      0 *.912              *.*
95ab00fc udp6       0      0 *.sunrpc           *.*
Active UNIX domain sockets
Address  Type   Recv-Q Send-Q    Inode     Conn     Refs  Nextref Addr
95b63968 stream      0      0 b4f8511c        0        0        0 /var/run/openldap/ldapi
95b634b4 stream      0      0 95bc8354        0        0        0 /var/run/proftpd.sock
95b638bc stream      0      0 95bb77c4        0        0        0 /var/run/proftpd.sock
95b6360c stream      0      0 95b7558c        0        0        0 /var/run/rpcbind.sock
95b63e1c stream      0      0 95aab7c4        0        0        0 /var/run/devd.pipe
95b63cc4 dgram       0      0        0 95b632b0        0 95b630ac
95b630ac dgram       0      0        0 95b632b0        0        0
95b632b0 dgram       0      0 b353ae6c        0 95b63cc4        0 /var/run/logpriv
95b6335c dgram       0      0 b355b000        0        0        0 /var/run/log
95b63c18 dgram       0      0        0 95b636b8        0 95b63408
95b63408 dgram       0      0        0 95b636b8        0 95b63000
95b63000 dgram       0      0        0 95b636b8        0 95b63204
95b63204 dgram       0      0        0 95b636b8        0 95b63d70
95b63810 dgram       0      0        0 95b63764        0 95b63b6c
95b63d70 dgram       0      0        0 95b636b8        0 95b63a14
95b63b6c dgram       0      0        0 95b63764        0        0
95b63a14 dgram       0      0        0 95b636b8        0 95b63158
95b63158 dgram       0      0        0 95b636b8        0 95b63560
95b63560 dgram       0      0        0 95b636b8        0        0
95b636b8 dgram       0      0 95b76000        0 95b63c18        0 /var/run/logpriv
95b63764 dgram       0      0 95b6db18        0 95b63810        0 /var/run/log

Sockets

USER     COMMAND    PID   FD PROTO  LOCAL ADDRESS         FOREIGN ADDRESS
389      slapd      6894  3  dgram  -> /var/run/logpriv
389      slapd      6894  6  stream /var/run/openldap/ldapi
389      slapd      6894  7  tcp4   192.168.0.61:389      *:*
root     cron       4860  4  dgram  -> /var/run/logpriv
root     syslogd    4805  4  dgram  /var/run/log
root     syslogd    4805  5  dgram  /var/run/logpriv
root     upsmon     4443  3  dgram  -> /var/run/logpriv
root     upsmon     4443  4  tcp4   192.168.0.60:32319    192.168.0.50:3493
root     upsmon     4442  3  dgram  -> /var/run/logpriv
root     sshd       2932  5  tcp4   192.168.0.60:22       192.168.0.48:46849
root     login      2738  3  dgram  -> /var/run/logpriv
root     lighttpd   2608  3  dgram  -> /var/run/logpriv
root     lighttpd   2608  4  tcp4   192.168.0.60:80       *:*
root     lighttpd   2608  6  tcp4   192.168.0.60:80       192.168.0.48:44078
root     mDNSRespon 2545  3  udp4   *:47885               *:*
root     mDNSRespon 2545  4  udp4   *:5353                *:*
root     sshd       2448  4  tcp6   *:22                  *:*
root     sshd       2448  5  tcp4   *:22                  *:*
nobody   proftpd    2336  2  tcp4 6 *:21                  *:*
nobody   proftpd    2336  4  stream /var/run/proftpd.sock
nobody   proftpd    2336  5  stream /var/run/proftpd.sock
nobody   proftpd    2336  6  dgram  -> /var/run/log
root     upslog     2251  4  dgram  -> /var/run/logpriv
www      lighttpd   2157  3  dgram  -> /var/run/log
www      lighttpd   2157  4  tcp4   *:8080                *:*
root     rpc.lockd  2090  3  dgram  -> /var/run/logpriv
root     rpc.statd  2087  4  udp6   *:739                 *:*
root     rpc.statd  2087  5  tcp6   *:739                 *:*
root     rpc.statd  2087  6  udp4   *:739                 *:*
root     rpc.statd  2087  7  tcp4   *:739                 *:*
root     rpc.statd  2087  9  dgram  -> /var/run/logpriv
root     nfsd       2083  5  tcp4   *:2049                *:*
root     nfsd       2083  6  tcp6   *:2049                *:*
root     mountd     2072  5  dgram  -> /var/run/logpriv
root     mountd     2072  6  udp6   *:631                 *:*
root     mountd     2072  7  tcp6   *:631                 *:*
root     mountd     2072  8  udp4   *:631                 *:*
root     mountd     2072  9  tcp4   *:631                 *:*
root     rpcbind    2048  4  udp6   *:*                   *:*
root     rpcbind    2048  5  stream /var/run/rpcbind.sock
root     rpcbind    2048  6  udp6   *:111                 *:*
root     rpcbind    2048  7  udp6   *:912                 *:*
root     rpcbind    2048  8  tcp6   *:111                 *:*
root     rpcbind    2048  9  udp4   *:111                 *:*
root     rpcbind    2048  10 udp4   *:669                 *:*
root     rpcbind    2048  11 tcp4   *:111                 *:*
root     syslogd    2032  4  dgram  /var/run/log
root     syslogd    2032  5  dgram  /var/run/logpriv
root     devd       1914  4  stream /var/run/devd.pipe
?        ?          ?     ?  udp6   *:620                 *:*
?        ?          ?     ?  tcp4   192.168.0.60:80       192.168.0.48:44075
?        ?          ?     ?  udp6   *:2049                *:*
?        ?          ?     ?  udp4   *:642                 *:*
?        ?          ?     ?  udp4   *:*                   *:*
?        ?          ?     ?  udp6   *:695                 *:*
?        ?          ?     ?  tcp6   *:712                 *:*
?        ?          ?     ?  tcp4   *:760                 *:*
?        ?          ?     ?  udp4   *:2049                *:*
?        ?          ?     ?  tcp4   192.168.0.60:80       192.168.0.48:44077
8 - In jail with ssh, I check the contents of my basic Ldap :

Code: Select all

root@OpenLdap:/ # ldapsearch
# extended LDIF
#
# LDAPv3
# base <> (default) with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#

# search result
search: 2
result: 32 No such object

# numResponses: 1
root@OpenLdap:/ # 
9 - On the webgui of Nas4Free, I create a new user "test-ldap" (see screenshot):
New user created Nas4Free!
In Nas4Free log:

Code: Select all

Dec 27 14:10:13 	nas4free-labo 	root: fmperm service executed
Dec 27 14:10:13 	nas4free-labo 	root: websrv_htpasswd service executed
Dec 27 14:10:12 	nas4free-labo 	root: userdb service executed
Dec 27 14:10:07 	nas4free-labo 	mountd[2072]: bad opt mask
Dec 27 14:10:07 	nas4free-labo 	mountd[2072]: bad opt mask
10 - I go see my base ldap :

Code: Select all

root@OpenLdap:/ # ldapsearch
# extended LDIF
#
# LDAPv3
# base <> (default) with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#

# search result
search: 2
result: 32 No such object

# numResponses: 1
root@OpenLdap:/ # 
And nothing has changed !!!
Moreover, in the Nas4Free log, nothing indicates any cooperation between Nas4Free and OpenLdap.
But nothing wrong too!

One idea ?

Best Regards !
You do not have the required permissions to view the files attached to this post.
11.2.0.4 - Omnius (revision 6026) x64-embedded
111909 RSDT1411 AMD Athlon(tm) 64 Processor 4000+ 4096MiB RAM - HDD 2 x 6 To in ZFS mirroring + 2 x (2 x 4To in ZFS mirroring) - SSD 32Go - UPS EATON Ellipse MAX 1100.

User avatar
velivole18
Forum Moderator
Forum Moderator
Posts: 650
Joined: 14 Jul 2012 20:23
Location: France
Status: Offline

Re: OpenLdap in Jail

#2

Post by velivole18 »

Hello,
Laster13 and myself (velivole18) have compiled and installed OpenLdap in jail with the MDB option.
A dialogue exists between Nas4Free and OpenLdap after initializing the service in Nas4Free. However we always logs in OpenLdap a key issue that is not in the index. We have created the basis OpenLdap root "dc = famille, dc = local" and below organizationalUnit "Users", "Groups", "Computers" and "Password". Why do we always this key problem, while they do exist in the OpenLdap base. Should we set a NIS database for the ldap service Nas4Free working properly?
Thank you for your help.
Best regards.

File init.ldif :

Code: Select all

## Creation du noeud racine
dn: dc=famille,dc=local
dc: famille
objectClass: dcObject
objectClass: organizationalUnit
ou: famille point local

## Creation de l'OU users
dn: ou=users,dc=famille,dc=local
ou: users
objectClass: organizationalUnit

## Creation de l'OU groups
dn: ou=groups,dc=famille,dc=local
ou: groups
objectClass: organizationalUnit

## Creation de l'OU password
dn: ou=password,dc=famille,dc=local
ou: password
objectClass: organizationalUnit

## Creation de l'OU computers
dn: ou=computers,dc=famille,dc=local
ou: computers
objectClass: organizationalUnit
File slapd.conf :

Code: Select all

#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include		/usr/local/etc/openldap/schema/core.schema
include		/usr/local/etc/openldap/schema/cosine.schema
include		/usr/local/etc/openldap/schema/nis.schema

# Define global ACLs to disable default read access.

# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral	ldap://root.openldap.org

pidfile		/var/run/openldap/slapd.pid
argsfile	/var/run/openldap/slapd.args

# Load dynamic backend modules:
modulepath	/usr/local/libexec/openldap
moduleload	back_mdb
moduleload	back_ldap

# Sample security restrictions
#	Require integrity protection (prevent hijacking)
#	Require 112-bit (3DES or better) encryption for updates
#	Require 63-bit encryption for simple bind
# security ssf=1 update_ssf=112 simple_bind=64

# Sample access control policy:
#	Root DSE: allow anyone to read it
#	Subschema (sub)entry DSE: allow anyone to read it
#	Other DSEs:
#		Allow self write access
#		Allow authenticated users read access
#		Allow anonymous users to authenticate
#	Directives needed to implement policy:
# access to dn.base="" by * read
# access to dn.base="cn=Subschema" by * read
# access to *
#	by self write
#	by users read
#	by anonymous auth
#
# if no access controls are present, the default policy
# allows anyone and everyone to read anything but restricts
# updates to rootdn.  (e.g., "access to * by * read")
#
# rootdn can always read and write EVERYTHING!

#######################################################################
# backend database definitions
#######################################################################

database	mdb
maxsize		1073741824
suffix		"dc=famille,dc=local"
rootdn		"cn=rootpw,dc=famille,dc=local"
# Cleartext passwords, especially for the rootdn, should
# be avoid.  See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw		secret
# The database directory MUST exist prior to running slapd AND 
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory	/var/db/openldap-data
# Indices to maintain
index	objectClass  eq
index   dc,ou,cn     eq,sub
File ldap.conf :

Code: Select all

uri ldap://192.168.0.62
base dc=famille,dc=local
binddn cn=rootpw,dc=famille,dc=local
bindpw secret
rootbinddn cn=rootpw,dc=famille,dc=local
nss_base_passwd ou=password,dc=famille,dc=local?one
nss_base_group ou=groups,dc=famille,dc=local?one
pam_password clear
ldap_version 3
timelimit 30
bind_timelimit 30
bind_policy soft
pam_ldap_attribute uid
And why in this file don't exist definition for Users and Computers like Groups and Password ? is it normal ?

File log for OpenLdap when I want create a new host (same problem for new user or group) :

Code: Select all

54a69bf1 slap_listener_activate(6): 
54a69bf1 >>> slap_listener(ldap://192.168.0.62/)
54a69bf1 connection_get(10): got connid=1001
54a69bf1 connection_read(10): checking for input on id=1001
ber_get_next
ber_get_next: tag 0x30 len 47 contents:
54a69bf1 op tag 0x60, time 1420205041
ber_get_next
54a69bf1 conn=1001 op=0 do_bind
ber_scanf fmt ({imt) ber:
ber_scanf fmt (m}) ber:
54a69bf1 >>> dnPrettyNormal: <cn=rootpw,dc=famille,dc=local>
54a69bf1 <<< dnPrettyNormal: <cn=rootpw,dc=famille,dc=local>, <cn=rootpw,dc=famille,dc=local>
54a69bf1 do_bind: version=3 dn="cn=rootpw,dc=famille,dc=local" method=128
54a69bf1 do_bind: v3 bind: "cn=rootpw,dc=famille,dc=local" to "cn=rootpw,dc=famille,dc=local"
54a69bf1 send_ldap_result: conn=1001 op=0 p=3
54a69bf1 send_ldap_response: msgid=1 tag=97 err=0
ber_flush2: 14 bytes to sd 10
54a69bf1 connection_get(10): got connid=1001
54a69bf1 connection_read(10): checking for input on id=1001
ber_get_next
ber_get_next: tag 0x30 len 99 contents:
54a69bf1 op tag 0x63, time 1420205041
ber_get_next
54a69bf1 conn=1001 op=1 do_search
ber_scanf fmt ({miiiib) ber:
54a69bf1 >>> dnPrettyNormal: <ou=password,dc=famille,dc=local>
54a69bf1 <<< dnPrettyNormal: <ou=password,dc=famille,dc=local>, <ou=password,dc=famille,dc=local>
ber_scanf fmt ({mm}) ber:
ber_scanf fmt ({mm}) ber:
ber_scanf fmt ({M}}) ber:
54a69bf1 => mdb_search
54a69bf1 mdb_dn2entry("ou=password,dc=famille,dc=local")
54a69bf1 => mdb_dn2id("ou=password,dc=famille,dc=local")
54a69bf1 <= mdb_dn2id: got id=0x4
54a69bf1 => mdb_entry_decode:
54a69bf1 <= mdb_entry_decode
54a69bf1 search_candidates: base="ou=password,dc=famille,dc=local" (0x00000004) scope=1
54a69bf1 => mdb_equality_candidates (objectClass)
54a69bf1 => key_read
54a69bf1 <= mdb_index_read: failed (-30798)
54a69bf1 <= mdb_equality_candidates: id=0, first=0, last=0
54a69bf1 => mdb_equality_candidates (objectClass)
54a69bf1 => key_read
54a69bf1 <= mdb_index_read: failed (-30798)
54a69bf1 <= mdb_equality_candidates: id=0, first=0, last=0
54a69bf1 mdb_search_candidates: id=0 first=0 last=0
54a69bf1 mdb_search: no candidates
54a69bf1 send_ldap_result: conn=1001 op=1 p=3
54a69bf1 send_ldap_response: msgid=2 tag=101 err=0
ber_flush2: 14 bytes to sd 10
54a69bf1 connection_get(10): got connid=1001
54a69bf1 connection_read(10): checking for input on id=1001
ber_get_next
ber_get_next: tag 0x30 len 150 contents:
54a69bf1 op tag 0x63, time 1420205041
ber_get_next
54a69bf1 conn=1001 op=2 do_search
ber_scanf fmt ({miiiib) ber:
54a69bf1 >>> dnPrettyNormal: <ou=groups,dc=famille,dc=local>
54a69bf1 <<< dnPrettyNormal: <ou=groups,dc=famille,dc=local>, <ou=groups,dc=famille,dc=local>
ber_scanf fmt ({mm}) ber:
ber_scanf fmt ({mm}) ber:
ber_scanf fmt ({M}}) ber:
54a69bf1 => get_ctrls
ber_scanf fmt ({m) ber:
ber_scanf fmt (m) ber:
54a69bf1 => get_ctrls: oid="1.2.840.113556.1.4.319" (noncritical)
ber_scanf fmt ({im}) ber:
54a69bf1 <= get_ctrls: n=1 rc=0 err=""
54a69bf1 => mdb_search
54a69bf1 mdb_dn2entry("ou=groups,dc=famille,dc=local")
54a69bf1 => mdb_dn2id("ou=groups,dc=famille,dc=local")
54a69bf1 <= mdb_dn2id: got id=0x3
54a69bf1 => mdb_entry_decode:
54a69bf1 <= mdb_entry_decode
54a69bf1 search_candidates: base="ou=groups,dc=famille,dc=local" (0x00000003) scope=1
54a69bf1 => mdb_equality_candidates (objectClass)
54a69bf1 => key_read
54a69bf1 <= mdb_index_read: failed (-30798)
54a69bf1 <= mdb_equality_candidates: id=0, first=0, last=0
54a69bf1 => mdb_equality_candidates (objectClass)
54a69bf1 => key_read
54a69bf1 <= mdb_index_read: failed (-30798)
54a69bf1 <= mdb_equality_candidates: id=0, first=0, last=0
54a69bf1 mdb_search_candidates: id=0 first=0 last=0
54a69bf1 mdb_search: no candidates
54a69bf1 send_ldap_result: conn=1001 op=2 p=3
54a69bf1 send_ldap_response: msgid=3 tag=101 err=0
ber_flush2: 51 bytes to sd 10
54a69bf1 connection_get(10): got connid=1001
54a69bf1 connection_read(10): checking for input on id=1001
ber_get_next
ber_get_next: tag 0x30 len 99 contents:
54a69bf1 op tag 0x63, time 1420205041
ber_get_next
54a69bf1 conn=1001 op=3 do_search
ber_scanf fmt ({miiiib) ber:
54a69bf1 >>> dnPrettyNormal: <ou=password,dc=famille,dc=local>
54a69bf1 <<< dnPrettyNormal: <ou=password,dc=famille,dc=local>, <ou=password,dc=famille,dc=local>
ber_scanf fmt ({mm}) ber:
ber_scanf fmt ({mm}) ber:
ber_scanf fmt ({M}}) ber:
54a69bf1 => mdb_search
54a69bf1 mdb_dn2entry("ou=password,dc=famille,dc=local")
54a69bf1 => mdb_dn2id("ou=password,dc=famille,dc=local")
54a69bf1 <= mdb_dn2id: got id=0x4
54a69bf1 => mdb_entry_decode:
54a69bf1 <= mdb_entry_decode
54a69bf1 search_candidates: base="ou=password,dc=famille,dc=local" (0x00000004) scope=1
54a69bf1 => mdb_equality_candidates (objectClass)
54a69bf1 => key_read
54a69bf1 <= mdb_index_read: failed (-30798)
54a69bf1 <= mdb_equality_candidates: id=0, first=0, last=0
54a69bf1 => mdb_equality_candidates (objectClass)
54a69bf1 => key_read
54a69bf1 <= mdb_index_read: failed (-30798)
54a69bf1 <= mdb_equality_candidates: id=0, first=0, last=0
54a69bf1 mdb_search_candidates: id=0 first=0 last=0
54a69bf1 mdb_search: no candidates
54a69bf1 send_ldap_result: conn=1001 op=3 p=3
54a69bf1 send_ldap_response: msgid=4 tag=101 err=0
ber_flush2: 14 bytes to sd 10
54a69bf1 connection_get(10): got connid=1001
54a69bf1 connection_read(10): checking for input on id=1001
ber_get_next
ber_get_next: tag 0x30 len 150 contents:
54a69bf1 op tag 0x63, time 1420205041
ber_get_next
54a69bf1 conn=1001 op=4 do_search
ber_scanf fmt ({miiiib) ber:
54a69bf1 >>> dnPrettyNormal: <ou=groups,dc=famille,dc=local>
54a69bf1 <<< dnPrettyNormal: <ou=groups,dc=famille,dc=local>, <ou=groups,dc=famille,dc=local>
ber_scanf fmt ({mm}) ber:
ber_scanf fmt ({mm}) ber:
ber_scanf fmt ({M}}) ber:
54a69bf1 => get_ctrls
ber_scanf fmt ({m) ber:
ber_scanf fmt (m) ber:
54a69bf1 => get_ctrls: oid="1.2.840.113556.1.4.319" (noncritical)
ber_scanf fmt ({im}) ber:
54a69bf1 <= get_ctrls: n=1 rc=0 err=""
54a69bf1 => mdb_search
54a69bf1 mdb_dn2entry("ou=groups,dc=famille,dc=local")
54a69bf1 => mdb_dn2id("ou=groups,dc=famille,dc=local")
54a69bf1 <= mdb_dn2id: got id=0x3
54a69bf1 => mdb_entry_decode:
54a69bf1 <= mdb_entry_decode
54a69bf1 search_candidates: base="ou=groups,dc=famille,dc=local" (0x00000003) scope=1
54a69bf1 => mdb_equality_candidates (objectClass)
54a69bf1 => key_read
54a69bf1 <= mdb_index_read: failed (-30798)
54a69bf1 <= mdb_equality_candidates: id=0, first=0, last=0
54a69bf1 => mdb_equality_candidates (objectClass)
54a69bf1 => key_read
54a69bf1 <= mdb_index_read: failed (-30798)
54a69bf1 <= mdb_equality_candidates: id=0, first=0, last=0
54a69bf1 mdb_search_candidates: id=0 first=0 last=0
54a69bf1 mdb_search: no candidates
54a69bf1 send_ldap_result: conn=1001 op=4 p=3
54a69bf1 send_ldap_response: msgid=5 tag=101 err=0
ber_flush2: 51 bytes to sd 10
11.2.0.4 - Omnius (revision 6026) x64-embedded
111909 RSDT1411 AMD Athlon(tm) 64 Processor 4000+ 4096MiB RAM - HDD 2 x 6 To in ZFS mirroring + 2 x (2 x 4To in ZFS mirroring) - SSD 32Go - UPS EATON Ellipse MAX 1100.

Post Reply

Return to “LDAP (Lightweight Directory Access Protocol)”