Home » Forums » FreeBSD Support » Networking

OpenLDAP & MySQL

Submitted by Anonymous on Tue, 2006-03-28 03:28
Hello again! Well, I got around to testing the OpenLDAP with MySQL backend from your tutorial. Everything seems to be working fine, except one thing: slapd won't start on system startup, complains about not being able to connect via /tmp/mysql.sock If I try to start it later, it starts up just fine. I noticed that slapd is started right after mysql is started, so I thought maybe mysql doesn't have time to open the socket until slapd tries to connect. So I added REQUIRE mysql to slapd startup script, but still it complains about the same thing. Is there any other way to delay slapd startup ? Should I use AFTER mysql ? Or maybe BEFORE slapd in mysql startup script ? Will that be any good ? Or am I barking up the wrong tree alltogether ? Oh, and another question. Where did all the tutorials go ? And the login ? Or am I visiting just as you're working on the site ? Okay, I know I'm abusing your time now, but I have yet another question. I asked about it in other forums as well, but not much activity there. How can I make the make utility not fail when a dependancy is already installed ? Is using the -k option okay ? I tried to install mysql-connector-odbc and it failed because mysql-client was already installed. I used the -k option and it worked, but I am not sure if in other situations this would not break something. Cheers, Galanton Peter
NSS/PAM/LDAP_Auth with openldap-23 ›
»

OpenLDAP and MySQL

Submitted by tbonius on Tue, 2006-03-28 13:22.
I collected information from all over to test and compile the tutorial on getting OpenLDAP working with MySQL. Some sites even recommended using Innodb for MySQL instead of the ususal InnoDB storage engine. As we have found out over time and more testing though.. is this solution is more for redundancy purposes (maybe a little show and tell) and is not really a viable and functional solution. With that beign said.. there are more options for "slapd" in the latest releases of Suse 10 Server and Mac OSX server. I have not personally tried them out yet.. but as soon as I do, I'm sure we'll have some info up.
»

OpenLDAP and MySQL

Submitted by Niraj Kumar (not verified) on Thu, 2008-12-18 03:13.
Could you provide the OpenLDAP and MySQL document from which u have configured the OpenLDAP ?? Thanks.
»

I've had some difficulty

Submitted by kz on Tue, 2006-03-28 12:51.
I've had some difficulty getting mysql to work with OpenLDAP which is why I took the tutorial down. It just didn't work! I'm not sure where Tbon got it, or how he made that tutorial so maybe he'll have some more input. My initial install with OpenLDAP was with mysql, but I got frustrated, gave up, and found out that using OpenLDAP with mysql isn't really recommended. The tutorials/login went away because of an upgrade. Whoops, I should have checked it closer. Anyhow I've downgraded and will work on getting a working upgrade soon. I assume you're talking about using make in ports. You can try installing with make install -DNO_DEPENDS and it shouldn't check your dependancies.
»

You're right

Submitted by galantonp on Wed, 2006-03-29 08:19.
Well, I have also come to the conclusion that MySQL and OpenLDAP don't go well together. It was still good as a practice, learned a lot of things while trying to make it work. About make, yes, I was talking about making ports :) But if I use -DNO_DEPENDS won't that disable ALL dependencies ? What do I do if I have some of the dependancies already installed while others I don't ? I also want to let you know about another caveat with swatch. It seems that if you use the /Invalid user/ awk pattern, it is possible to inject an arbitrary IP by using a multiple word username. Isn't there any way of using capturing groups in these patterns ? For instance using (.*)Invalid user (.*) from (\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}) ? I don't itend to use it for much longer, as I'm writing my own version of swatch these days in Java (it's the only language that I know well), but thought I should let you know about this issue, maybe you can include that too into the caveats section or something. Cheers, Peter
»

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.