I am trying to get ldapsearch working so I can establish I can access the ldap directory remotely. The following works:
ldapsearch -h localhost -b "dc=home,dc=htt" -D "cn=manager,ou=internal,dc=home,dc=htt" -s sub "objectclass=GroupOfNames" -x -w m...
But
ldapsearch -h 192.168.128.2 -b "dc=home,dc=htt" -D "cn=manager,ou=internal,dc=home,dc=htt" -s sub "objectclass=GroupOfNames" -x -w m....
Does not (my server is at 192.168.128.2 and all these commands were issued in an SSH session on the server):
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
When entering this question here I was prompted to check out:
https://www.clearos.com/clearfoundation/social/community/accessing-ldap-from-cli-or-3rd-party-apps
and looked for /etc/kolab/kolab.conf, but this file does not exist. In fact no /etc/kolab directory.
I am running ClearOS Community release 6.6.0. I have moved my network to a new ISP, so the registration information's external IP address is wrong.
Oh I have even issued 'service firewall stop' did not help.
ldapsearch -h localhost -b "dc=home,dc=htt" -D "cn=manager,ou=internal,dc=home,dc=htt" -s sub "objectclass=GroupOfNames" -x -w m...
But
ldapsearch -h 192.168.128.2 -b "dc=home,dc=htt" -D "cn=manager,ou=internal,dc=home,dc=htt" -s sub "objectclass=GroupOfNames" -x -w m....
Does not (my server is at 192.168.128.2 and all these commands were issued in an SSH session on the server):
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
When entering this question here I was prompted to check out:
https://www.clearos.com/clearfoundation/social/community/accessing-ldap-from-cli-or-3rd-party-apps
and looked for /etc/kolab/kolab.conf, but this file does not exist. In fact no /etc/kolab directory.
I am running ClearOS Community release 6.6.0. I have moved my network to a new ISP, so the registration information's external IP address is wrong.
Oh I have even issued 'service firewall stop' did not help.
Share this post:
Accepted Answer
By default ldap is configured only to listen on localhost. I would guess it would work if you changed Webconfig > System > Directory Server > Policies > Edit > Publish Policy to Local Network.
I don't know ldap or ldapsearch but you may have to change your search line so it uses ldaps:// and not ldap:// as the Local Network policy only enables ldaps (but it can be hacked to allow ldap). From looking at the man page you may have to change -h to -H and prefix your IP address with ldaps://. Have a play.
I don't know ldap or ldapsearch but you may have to change your search line so it uses ldaps:// and not ldap:// as the Local Network policy only enables ldaps (but it can be hacked to allow ldap). From looking at the man page you may have to change -h to -H and prefix your IP address with ldaps://. Have a play.
Please login to post a reply
You will need to be logged in to be able to post a reply. Login using the form on the right or register an account if you are new here.
Register Here »