Re: Heimdal-04e & OpenLDAP 2.0.18

[Dave Ryan <dave.ryan@eircom.net>]

Thanks for the response Luke, the saga continues...

Luke Howard said the following on Thu, Nov 15, 2001 at 06:15:40PM +1100, 
> You need to do:
> 
> # ldapadd -D cn=ryand,dc=test,dc=net -w secret
> dn: dc=test,dc=net
> objectclass: domain
> dc: test
> 
> dn: ou=KerberosPrincipals,dc=test,dc=net
> objectclass: organizationalUnit
> ou: KerberosPrincipals

Done. However it told me that it existed already (the kerberos entries did
not). I deleted the database and started again.

freebsd-44-1# cat /tmp/eircom-parent.ldif
dn: dc=eircom,dc=net
objectclass: domain
dc: eircom

dn: ou=KerberosPrincipals,dc=eircom,dc=net
objectclass: organizationalUnit
ou: KerberosPrincipals

freebsd-44-1# ldapadd -D cn=ryand,dc=eircom,dc=net -w secret -f
/tmp/eircom-parent.ldif
adding new entry "dc=eircom,dc=net"

adding new entry "ou=KerberosPrincipals,dc=eircom,dc=net"

freebsd-44-1# /usr/heimdal/sbin/kadmin -l
kadmin> init EIRCOM.NET
Realm max ticket life [unlimited]:
Realm max renewable ticket life [unlimited]:
kadmin: kadm5_create_principal: ldap_add_s: No such object
freebsd-44-1#

Same error again, parent does not exist. I noticed in the scrolling debug -1
something about resource not available.

Just to clear things up, slapd is accepting new entries from localhost::

freebsd-44-1# ldapadd -D cn=ryand,dc=eircom,dc=net -w secret -a -f
/tmp/eircom-test
adding new entry "cn=Dave Ryan,dc=eircom,dc=net"

freebsd-44-1#

I would imagine its something stupid as I have never set this up before,
making the migration from MIT->Heimdal.

Thanks for the help.

Dave.