4 Replies Latest reply on May 21, 2013 4:20 PM by user9088884

    Help with setting up LDAP Client on Oracle Linux 6.4


      I'm having problems getting my Oracle Linux server setup as a ldap client and hoping someone can find where I'm going wrong. We have Oracle/Sun Directory Server 7 with Solaris ldap clients already setup with ssl. We are also using crypt for storing passwords. Here are the steps I have done on the Linux server.

      yum install -y openldap openldap-clients nss-pam-ldapd pam_ldap

      Edited the line FORCELEGACY=no to yes in /etc/sysconfig/authconfig
      Copied the CA certs to /etc/openldap/cacerts

      Ran: authconfig updateall enableldap enableldapauth ldapserver=zldap1.<domain> ldapbasedn="o=<domain>,o=isp" enableldaptls --enableldapstarttls

      Changed pam_password md5 to crypt in /etc/pam_ldap.conf

      Restarted /etc/init.d/nslcd and also tried rebooting.

      I'm seeing the following errors in messages:

      May 21 08:50:01 ryolinux nslcd[1261]: [c79ea8] ldap_start_tls_s() failed: Connect error (uri="ldap://zldap1.<domain>/")
      May 21 08:50:01 ryolinux nslcd[1261]: [c79ea8] failed to bind to LDAP server ldap://zldap1.<domain>/: Connect error
      May 21 08:50:01 ryolinux nslcd[1261]: [c79ea8] no available LDAP server found

      Here is what my /etc/openldap/ldap.conf file looks like:

      TLS_CACERTDIR /etc/openldap/cacerts
      TLS_REQCERT allow
      URI ldap://zldap1.<domain>/
      BASE o=<domain>,o=isp

      Any help would be appreciated.