@Rajesh Rajasekharan, Please accept my Gratitute for you to have spent time, money and effort to freely share the experience you have gained over the years.
You made me understand the lessons clearly. Although, i have few questions and would be great if you help me out. 1. Can we create a DN without any data in it. I want to use the DN just as a tree path. The data would be in following DN's. 2. Can we know who is authorized to ldapsearch a perticular DN (or a subtree).
When I start the OpenLDAP in this lesson, it's just an instance without any data in it. When I run the 'ldapadd' command , I'm creating a suffix (root of the Directory Information Tree) with the name 'dc=example,dc=com'. Underneath that suffix, there is no data yet. You should be able to identify who has got access to what in a Directory Information Tree by reviewing the Access Control List defined in the OpenLDAP configuration. See if the videos around OpenLDAP Access Control list helps: 1. th-cam.com/video/MhI9_jJS-w4/w-d-xo.html 2. th-cam.com/video/JnVVZM5jf40/w-d-xo.html 3. th-cam.com/video/yPx9MLBhU2Y/w-d-xo.html Thanks for watching!
Rajesh Rajasekharan In my organization, i am not authorized to look into the config files. So when i search with a user name in bindDN(-u "abcdef") it returns me with no results with error code :10
Rajesh, Thanks for the very helpful video series. One question - Since "cn=Manager,dc=fedji,dc=com" is used to create the first entry in the database, does it mean "cn=Manager,dc=fedji,dc=com" itself doesnt exist in the database and is created in the config file just for administration purposes
when run this command on openldap server centos 7 :ldapadd -Y EXTERNAL -x -W -D "cn=Manager,dc=atlas,dc=com" -f ldapgroup.ldif it results with error ldapadd: incompatible with previous authentication choice so how can i solve it
Hi Rajesh million times Thanks for vidoes . Solaris And LDAP all of your video are wonderful . would you Explain same video for Master and Slave and Multimaster and Active directory as front off ADLDS as Slave fur Openldap(such as Sun directory or Oracle unifid Directory ) Thanks A lot Ser
A good session altogether. However, i do not these files on rhel7. probably a different file structure on rhel7. is it possible to provide some info regarding openldap on rhel7?
Hello Amit, Thank you for watching and thanks for all kind words. You might find the following link useful: access.redhat.com/documentation/en-us/red_hat_enterprise_linux/5/html/deployment_guide/s1-ldap-files Rajesh
Hello Astha - Please see if the following link is useful : access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/system-level_authentication_guide/openldap
Mike Jin i am assuming you are referring to rootdn.. It cannot be dc.. Rootdn is the admin account for ldap server.. It has to be a common name(cn)... Which is like user name..and dc is organization.. In this case fedji.com
@@RajeshRajasekharan Hi Rajesh, I am working with configuring ldap proxy for 2 ldap servers . I am able to configure ldap proxy and it is working fine s well but my problem is I can see users from both ldaps in separate OUs and not as single OU. I want to see users from both OUs in single OU. How I can achieve this? Can you please help? More details are on this link stackoverflow.com/questions/58432331/configuring-ldap-proxy-server-with-multiple-ad-ldap-servers
Hello Abdul - wish I could do, but in the middle of many pressing commitments. I'm sure there are readily available documentation that details the installation/configuration of OpenLDAP on CentOS. Once installed and configured, the administration & maintenance of OpenLDAP is similar, regardless of the OS.
Hello Vivek, There are multiple backend databases that are supported by OpenLDAP: www.openldap.org/doc/admin24/backends.html It's likely that the installation of OpenLDAP on Ubuntu defaults to mdb (or you accidentally configured mdb, if it prompted). I guess you can reconfigure your OpenLDAP to use a different database by running the following command: $ sudo dpkg-reconfigure slapd Hope this helps. Thanks for watching!
Thank yoy for this video. I have installed OpenLdap in Ubuntu. and while installation it asked for admin password. However I am not able to to slapadd with this admin. how to overcome this problem.
Hello Vamsee, Thank you for watching the video, more so for your encouraging comment :-) You can Email me at torajeshr[at]aol[dot]com. I don't do any freelance training though, so not sure how I could support you. kind regards, --R Rajesh
thank you Rajesh! Topnotch session!
Thank you Rajesh.
You are most welcome! Thank you for watching.
Thank you, a very useful information.
Thank you!
Great explanation ... thanks ..for putting efforts to provide us such a great source of learning
Thank you, Amit!
Excellent explanation and run time troubleshooting....Great!!!
Thank you, Sudhir.
well explained, thank you for taking the time to share :)
Thank you, Jasen:-)
Excellent video!
Thank you, Saurabh.
@Rajesh Rajasekharan, Please accept my Gratitute for you to have spent time, money and effort to freely share the experience you have gained over the years.
Thank you for your kind words. Always a pleasure to help in anyways I can.
Superb sir . Thanks you for the information
You made me understand the lessons clearly. Although, i have few questions and would be great if you help me out.
1. Can we create a DN without any data in it. I want to use the DN just as a tree path. The data would be in following DN's.
2. Can we know who is authorized to ldapsearch a perticular DN (or a subtree).
When I start the OpenLDAP in this lesson, it's just an instance without any data in it. When I run the 'ldapadd' command , I'm creating a suffix (root of the Directory Information Tree) with the name 'dc=example,dc=com'. Underneath that suffix, there is no data yet.
You should be able to identify who has got access to what in a Directory Information Tree by reviewing the Access Control List defined in the OpenLDAP configuration. See if the videos around OpenLDAP Access Control list helps:
1. th-cam.com/video/MhI9_jJS-w4/w-d-xo.html
2. th-cam.com/video/JnVVZM5jf40/w-d-xo.html
3. th-cam.com/video/yPx9MLBhU2Y/w-d-xo.html
Thanks for watching!
Rajesh Rajasekharan In my organization, i am not authorized to look into the config files. So when i search with a user name in bindDN(-u "abcdef") it returns me with no results with error code :10
Rajesh,
Thanks for the very helpful video series. One question - Since "cn=Manager,dc=fedji,dc=com" is used to create the first entry in the database, does it mean "cn=Manager,dc=fedji,dc=com" itself doesnt exist in the database and is created in the config file just for administration purposes
You can configure the webcam to not have a delay, I forget how tho
when run this command on openldap server centos 7 :ldapadd -Y EXTERNAL -x -W -D "cn=Manager,dc=atlas,dc=com" -f ldapgroup.ldif
it results with error
ldapadd: incompatible with previous authentication choice
so how can i solve it
Hi Rajesh million times Thanks for vidoes . Solaris And LDAP all of your video are wonderful . would you Explain same video for Master and Slave and Multimaster and Active directory as front off ADLDS as Slave fur Openldap(such as Sun directory or Oracle unifid Directory ) Thanks A lot Ser
A good session altogether. However, i do not these files on rhel7. probably a different file structure on rhel7. is it possible to provide some info regarding openldap on rhel7?
Hello Amit,
Thank you for watching and thanks for all kind words.
You might find the following link useful: access.redhat.com/documentation/en-us/red_hat_enterprise_linux/5/html/deployment_guide/s1-ldap-files
Rajesh
i want to read this ldap part on redhat , can u please tell me for that??
Hello Astha -
Please see if the following link is useful :
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/system-level_authentication_guide/openldap
Hi Rajesh ,
Since I'm a beginner , Hence would be greatfull if you guide me to install & configure open LDAP on Suse Linux Enterprise 12
Do you figure it out, I need help also
Hi,
In cn=manager,dc=fedji,dc=com, why manager has to be a "cn"? can I have it as dc=manager,dc=fedji,dc=com, or cn=manager,cn=fedji,cn=com?
Mike Jin i am assuming you are referring to rootdn.. It cannot be dc.. Rootdn is the admin account for ldap server.. It has to be a common name(cn)... Which is like user name..and dc is organization.. In this case fedji.com
Great video series.ldap always confused me
Thank you, Umesh
@@RajeshRajasekharan Hi Rajesh, I am working with configuring ldap proxy for 2 ldap servers . I am able to configure ldap proxy and it is working fine s well but my problem is I can see users from both ldaps in separate OUs and not as single OU. I want to see users from both OUs in single OU. How I can achieve this? Can you please help? More details are on this link stackoverflow.com/questions/58432331/configuring-ldap-proxy-server-with-multiple-ad-ldap-servers
Hello Sir can you please make a videos series for openldap in centos latest version please
Hello Abdul - wish I could do, but in the middle of many pressing commitments. I'm sure there are readily available documentation that details the installation/configuration of OpenLDAP on CentOS. Once installed and configured, the administration & maintenance of OpenLDAP is similar, regardless of the OS.
I installed it in ubuntu , database in slapd.conf file is showing mdb not bdb ..why?
Hello Vivek,
There are multiple backend databases that are supported by OpenLDAP: www.openldap.org/doc/admin24/backends.html
It's likely that the installation of OpenLDAP on Ubuntu defaults to mdb (or you accidentally configured mdb, if it prompted).
I guess you can reconfigure your OpenLDAP to use a different database by running the following command:
$ sudo dpkg-reconfigure slapd
Hope this helps. Thanks for watching!
It worked , thanks
sir, how to install LDAP on Windows 7?
Thank yoy for this video. I have installed OpenLdap in Ubuntu. and while installation it asked for admin password. However I am not able to to slapadd with this admin. how to overcome this problem.
What's the error you are getting ?
Could not the permission of the machine, it was empty (ls -l /var/openldap.openldap-data) nothing was in the file
Without the right permission, the OpenLDAP won't start. You have to change the permission of the OpenLDAP Data Directory to that of the OpenLDAP user.
@@RajeshRajasekharan how do you do this
@@RajeshRajasekharan How?
Hi Rajesh how are you. ..Divakar from ibm
Hi Rajesh great video; can you please forward your contact if possible as I am looking for some good training
Hello Vamsee,
Thank you for watching the video, more so for your encouraging comment :-) You can Email me at torajeshr[at]aol[dot]com.
I don't do any freelance training though, so not sure how I could support you.
kind regards,
--R Rajesh