[Bug 447099] [NEW] No password set on install of slapd-2.4.18-0ubuntu1
Mathias Gug
mathiaz at ubuntu.com
Fri Oct 9 19:46:33 BST 2009
On Fri, Oct 09, 2009 at 10:06:01AM -0000, Magne Rasmussen wrote:
> Public bug reported:
>
> Binary package hint: slapd
>
> 1) Ubuntu karmic (development branch) 9.10 (beta 1)
> 2) slapd_2.4.18-0ubuntu1_i386
> 3) During install or reconfigure, I expected to enter the LDAP directory admin password.
> 4) No password was asked for, so it is impossible to access the LDAP unless I manually add an 'olcRootPW' entry to /etc/ldap/slapd.d/cn=config/olcDatabase={0}config.ldif
>
A default DIT is no longer installed by the package:
openldap (2.4.17-1ubuntu3) karmic; urgency=low
* Install a minimal slapd configuration instead of creating a default
database with a default DIT:
+ Move openldap user home from /var/lib/ldap to /nonexistent.
+ Remove all code and templates dealing with the default database and DIT
creation.
+ Add an Authz map from root user (UID=0) to cn=localroot,cn=config and
grant all access to the latter in the cn=config database as well as the
default backend configuration.
* Add cn=localroot,cn=config authz mapping on upgrades.
-- Mathias Gug <mathiaz at ubuntu.com> Tue, 11 Aug 2009 14:48:56 -0400
There isn't a default LDAP directory admin password anymore. Instead the
cn=config tree is accessible when connecting as root using the SASL
external mechanism under the ldapi connection.
Example:
sudo ldapsearch -Y EXTERNAL -H ldapi:/// -b "cn=config"
status invalid
--
Mathias Gug
Ubuntu Developer http://www.ubuntu.com
** Changed in: openldap (Ubuntu)
Status: New => Invalid
--
No password set on install of slapd-2.4.18-0ubuntu1
https://bugs.launchpad.net/bugs/447099
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in ubuntu.
More information about the Ubuntu-server-bugs
mailing list