[nycbug-talk] OpenLDAP Server on FreeBSD-9

Scott Robbins scottro at nyc.rr.com
Tue Jul 24 14:30:16 EDT 2012

On Tue, Jul 24, 2012 at 01:07:27PM -0400, nycbug at wynn.com wrote:
> Greeting-
> I have finally decided it is time to cry UNCLE!  I have been trying for some
> many weeks to get an openldap server up and running for central auth of my 
> flock of FreeBSD and GNU/Linux boxes (GNU/Linux is on the way out) with 
> no luck.  

I enjoy the quote from the ldap for rocket scientists page.
The bad news is that IOHO never has so much been written so
incomprehensibly about a single topic with the possible exceptions of
BIND and ... and ...   (they end the sentence there.)  :)

I have my own, aged page, at
http://home.roadrunner.com/~computertaijutsu/ldap.html mostly done in
Linux on CentOS, not used on FreeBSD, though I think at one point a BSD
box authenticated off it.

> load up a password database using the following LDIF
> dn: uid=wynkoop,ou=People,dc=harapartners,dc=com
> uid: wynkoop
> cn: Brett Wynkoop
> objectClass: account
> objectClass: posixAccount
> objectClass: top
> userPassword: {crypt}*
> loginShell: /usr/local/bin/bash
> uidNumber: 1034
> gidNumber: 1034
> homeDirectory: /home/wynkoop
> gecos: Brett Wynkoop
> Here is the error returned:
>  [root at hp1 /home/wynkoop/MigrationTools-47]#  ldapadd -x -h localhost <  pass.wynkoop.ldif
> adding new entry "uid=wynkoop,ou=People,dc=harapartners,dc=com"
> ldap_add: Invalid syntax (21)

>         additional info: objectClass: value #0 invalid per syntax

Yes, that sounds like an ldap message.  If I remember correctly, that
means there's an error in your first line, probably some unseen white
space or a return, apparently in the first line.   Try removing and
re-adding the first line.  I haven't dealt with LDAP in a long time
however.  I would say, if you get the error again, redo it, making sure
no white space at the top of the file--that is, if you show numbers, the
dn should be at the first line and make sure there are returns after
each line.

Scott Robbins
PGP keyID EB3467D6
( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 )
gpg --keyserver pgp.mit.edu --recv-keys EB3467D6

Xander: It's time for me to act like a man... and hide. 

More information about the talk mailing list