- 论坛徽章:
- 0
|
我安装了openldap,是和Linux AS4一起安装的,2.2.x但安装好了就不能启动,不知道为什么???
[root@dbbak log]# cd /etc/init.d
[root@dbbak init.d]# ./ldap start
Checking configuration files for : config file testing succeeded
Starting slapd: [FAILED]
看一下log /var/log/messages
Mar 29 08:40:46 dbbak su(pam_unix)[3901]: session opened for user root by test(uid=500)
Mar 29 08:42:19 dbbak slaptest: sql_select option missing
Mar 29 08:42:19 dbbak slaptest: auxpropfunc error no mechanism available
Mar 29 08:42:19 dbbak ldap: succeeded
Mar 29 08:42:19 dbbak slapd[3951]: sql_select option missing
Mar 29 08:42:19 dbbak slapd[3951]: auxpropfunc error no mechanism available
Mar 29 08:42:19 dbbak ldap: slapd startup failed
找了网上一些资料,说是/etc/openldap中权限问题,发现不是这样的
[root@dbbak init.d]# cd /etc/openldap
[root@dbbak openldap]# ls -l
total 28
-rwxrwxrwx 1 ldap ldap 320 Mar 28 13:14 ldap.conf
drwxrwxrwx 3 ldap ldap 4096 Mar 28 13:12 schema
-rwxrwxrwx 1 ldap ldap 3320 Mar 28 14:04 slapd.conf
-rwxrwxrwx 1 ldap ldap 3437 Mar 28 14:08 slapd.conf.1
-rwxr-xr-x 1 ldap ldap 3320 Mar 28 14:49 slapd.conf.old
//etc/ldap.conf
[root@dbbak etc]# ls -l ldap.conf
-rwxr-xr-x 1 ldap ldap 8685 Mar 28 13:14 ldap.conf
/var/lib/ldap目录:
[root@dbbak lib]# ls -l
total 180
drwxr-xr-x 2 root root 4096 Mar 28 13:11 alternatives
drwxr-xr-x 2 root root 4096 Dec 1 2004 cs
drwx------ 2 apache apache 4096 Aug 31 2005 dav
drwxr-xr-x 2 root root 4096 Nov 18 2004 dhcp
drwxr-x--- 2 root root 4096 Oct 19 2004 dhcpv6
drwxr-xr-x 2 root root 4096 Aug 13 2004 games
drwxrwxrwx 2 ldap ldap 4096 Apr 21 2005 ldap
统统没有问题
/etc/openldap/slapd.conf
database bdb
suffix "dc=my-domain,dc=com"
rootdn "cn=Manager,dc=my-domain,dc=com"
# Cleartext passwords, especially for the rootdn, should
# be avoided. See slappasswd( and slapd.conf(5) for details.
# Use of strong authentication encouraged.
# rootpw secret
# rootpw {crypt}ijFYNcSNctBYg
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory /var/lib/ldap
即是安装的时候默认,没有改
不知道为什么起不来
谢谢
root@dbbak sbin]# ./slapd -d 256 (路径:/usr/sbin)
@(#) $OpenLDAP: slapd 2.2.13 (Apr 20 2005 18:32:13) $
root@decompose.build.redhat.com:/usr/src/build/557148-i386/BUILD/openldap-2.2.13/openldap-2.2.13/build-servers/servers/slapd
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_db_init: Initializing BDB database
TLS: could not load client CA list (file:`',dir:`/etc/openldap/cacerts').
TLS: error:0200A002:system librarypendir:No such file or directory ssl_cert.c:750
TLS: error:140D7002:SSL routines:SSL_add_dir_cert_subjects_to_stack:system lib ssl_cert.c:752
main: TLS init def ctx failed: -1
slapd stopped.
connections_destroy: nothing to destroy.
谢谢,这个cacerts是必须的吗???
谢谢 |
|