Hi Could someone point me in the direction of a well written, and easy to understand guide on how to create a debian domain controller, that will act as an ldap server for all of my other servers? Im very interested in how to configure it, and how to make the "client" servers sync with the directory. Also, I`d like to have an easy to maintain webclient to populate the ldap tree with. Thanks in advance for any useful suggestions.
Looks great! A bit complicated, but well written. I`ll have a crack at it tomorrow, and give you some feedback on how it went. Thanks again
Hi I followed this guide, and stumbled upon two problems. The first problem was that /etc/bind/named.ldap.conf was missing, so the BIND service couldn`t start. I fixed the problem by breating an empty file, and the bind service seems to start up okay. The second problem, and perhaps the worst, is that I can`t create any new users. Im stuck with the following error : ----- Warning: array_diff() [function.array-diff]: Argument #1 is not an array in /usr/share/mmc/modules/base/users/edit.php on line 192 Warning: Invalid argument supplied for foreach() in /usr/share/mmc/modules/base/users/edit.php on line 192 Warning: array_diff() [function.array-diff]: Argument #2 is not an array in /usr/share/mmc/modules/base/users/edit.php on line 196 Warning: Invalid argument supplied for foreach() in /usr/share/mmc/modules/base/users/edit.php on line 196 ---- It seems like /usr/share/mmc/modules/base/users/edit.php is acting up for some reason. Any suggestions would be greatly appreciated.
Hi raypettersen, looks like you forgot to copy the named.conf as described at the beginning of step 13. Please set it up again and follow the howto line by line. Best regards, Olli
Hi, and thankyou for your reply. I remember, that I copied the file you mentioned. The problem was that include "/etc/bind/named.conf.ldap"; Didn`t exist after I followed the guide.. I just created a blank file, and gave write permissions to it. Bind then started up without any errors. Im still at a loss why I am unable to create any new users. I skipped the dhcp part in the guide, because I already have an active dhcp in my Cisco Asa router. Could that have any effect?
The line in edit.php that is causing the problem, is as follows : foreach (array_diff($new, $old) as $group) {... and is followed by : add_member($group, $_POST['nlogin']); callPluginFunction("delUserFromGroup", array($_POST['nlogin'], $group)); Any ideas?
Hi raypettersen, I'll set up a MDS-system again and check if all is working. Give me a few days - I think till next weekend - sad to say that I haven't the time that I want to have. I need two heads and eight arms Best regards, Olli
I made some progress. The error messages were because the user was already created, but it didn`t show in the mds system. I made a new group, and a new user with another name, and everything worked as it should. If you could point me in the right direction on how to add linux clients into the domain, that would be awesome. I had a failed pam attempt, that bricked the login on the testserver, so I could`t access it through ssh anymore.
Hi raypettersen, I just set up the MDS on a fresh etch r3 system. I followed the howto line by line - copy & paste. All went well and I got no errors - also not within the MMC webinterface. I can add users and whatever else. So I think you have an error in your configuration - maybe a typo. I also took a look at the BIND configuration. The /etc/bind/named.conf.ldap is not missing - it'll be automatically created when you restart BIND at step 18. I think you should do the setup again on a fresh system - including the configuration for the DHCP (it is bunched with BIND within the corresponding mmc-plugin) - simply don't start the DHCP if you don't need it. Best regards, Olli
