mismatch in cn=admin,... DNs in debian-edu-config

To: debian-edu@lists.debian.org
Subject: mismatch in cn=admin,... DNs in debian-edu-config
From: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Fri, 08 Apr 2011 23:00:59 +0200
Message-id: <20110408230059.12982tr6oxd3y2dn@mail.das-netzwerkteam.de>

Hi all,

I have been getting a little confused by mismatching cn=admin DNs(there is an error on Debian Edu squeeze install currently that hintsto some cn=admin + TLS problem).

mike@minobo:~/MyDocuments/4projects/debian-edu/debian-edu-config$ grep-ri cn=admin, * | grep -v svnetc/ldap/slapd-lenny_debian-edu.conf:rootdn"cn=admin,ou=People,dc=skole,dc=skolelinux,dc=no"etc/ldap/slapd-lenny_debian-edu.conf:access todn.base="cn=admin,ou=People,dc=skole,dc=skolelinux,dc=no"etc/ldap/slapd-lenny_debian-edu.conf: bydn.exact="cn=admin,ou=People,dc=skole,dc=skolelinux,dc=no" ssf=128 =wxetc/ldap/slapd-lenny_debian-edu.conf: bydn.exact="cn=admin,ou=People,dc=skole,dc=skolelinux,dc=no" ssf=128 =wetc/ldap/slapd-lenny_debian-edu.conf:access todn.exact="cn=admin,ou=People,dc=skole,dc=skolelinux,dc=no"etc/ldap/slapd-debian-edu.conf:rootdn"cn=admin,ou=people,dc=skole,dc=skolelinux,dc=no"etc/ldap/slapd-debian-edu.conf:access todn.base="cn=admin,ou=people,dc=skole,dc=skolelinux,dc=no"etc/ldap/slapd-debian-edu.conf: bydn.exact="cn=admin,ou=people,dc=skole,dc=skolelinux,dc=no" ssf=128 =wxetc/ldap/slapd-debian-edu.conf: bydn.exact="cn=admin,ou=people,dc=skole,dc=skolelinux,dc=no" ssf=128 =wetc/ldap/slapd-debian-edu.conf:access todn.exact="cn=admin,ou=people,dc=skole,dc=skolelinux,dc=no"etc/ldap/slapd-squeeze_debian-edu.conf:rootdn"cn=admin,ou=ldap-access,dc=skole,dc=skolelinux,dc=no"ldap-bootstrap/root.ldif:## echo -n"cn=admin,ou=aclroles,dc=skole,dc=skolelinux,dc=no" | base64 -w0ldap-bootstrap/root.ldif:dn:cn=admin,ou=ldap-access,dc=skole,dc=skolelinux,dc=noldap-bootstrap/root.ldif:member:cn=admin,ou=ldap-access,dc=skole,dc=skolelinux,dc=noldap-bootstrap/root.ldif:member:cn=admin,ou=ldap-access,dc=skole,dc=skolelinux,dc=noldap-tools/ldappasswd2:$dn ='cn=admin,ou=ldap-access,dc=skole,dc=skolelinux,dc=no';

ldap-tools/csvparser:my $ldapadmindn  = "cn=admin,o=stfk,c=no";

ldap-tools/ldap-upgrade-db-fix: -D"cn=admin,ou=ldap-access,dc=skole,dc=skolelinux,dc=no"ldap-tools/barbarossa/makeldif:cat << EOF | ldapadd -x -h localhost -W-D cn=admin,ou=ldap-access,dc=skole,dc=skolelinux,dc=noldap-tools/barbarossa/makesmbAcc:cat << EOF | ldapmodify -x -hlocalhost -W -D cn=admin,ou=ldap-access,dc=skole,dc=skolelinux,dc=no

ldap-tools/sitesummary2ldapdhcp:my $binddn = "cn=admin,ou=ldap-access,$base";

share/debian-edu-config/tools/ldap-users.pl: member =>"cn=admin,ou=ldap-access," . $g{basedn},

To my experience the default cn=admin DN (that is the LDAP masteraccount) should be


  cn=admin,<BASEDN>

As we are restructuring the whole LDAP tree, we should approach commonstandards here as well...

However, if we leave things as they are, we should agree on oneunequivocal cn=admin DN/location in the LDAP DIT.


Greets,
Mike


--

DAS-NETZWERKTEAM
mike gabriel, dorfstr. 27, 24245 barmissen
fon: +49 (4302) 281418, fax: +49 (4302) 281419

GnuPG Key ID 0xB588399B
mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy:
https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb

Attachment: pgph5MJHcyk71.pgp
Description: Digitale PGP-Unterschrift

Reply to:

Follow-Ups:
- Re: mismatch in cn=admin,... DNs in debian-edu-config
  - From: Petter Reinholdtsen <pere@hungry.com>

Prev by Date: Bug#617383: marked as done (etckeeper Git on Debian Edu machines complains about missing user.name and user.email settings)
Next by Date: Bug#621787: README.ldap in debian-edu-config outdated
Previous by thread: Bug#617383: marked as done (etckeeper Git on Debian Edu machines complains about missing user.name and user.email settings)
Next by thread: Re: mismatch in cn=admin,... DNs in debian-edu-config
Index(es):
- Date
- Thread