OpenLDAP checksum error and slapcat message “ldif_read_file: checksum error”

OpenLDAP has evolved allowing dynamic changes in the (very good in principle), which is usually stored in:

Source   
/etc/ldap/slapd.d

The recommendation is to use commands like: ldapadd, ldapmodify or ldapdelete.

But the reality is that often would be nice to make changes manually to end before, this is something you can do. Simply restarting the service then restart normally pretty fast.

The surprise comes when we do a:

Continue reading

LDAP query filtering by group

If we are integrating applications on an LDAP (in our case on a OpenLDAP), we have probably seen the utility to obtain the users belonging to one group even LDAP query, because we want to integrate the application supports only a single query.

Also if we documentation on this subject we have found stuff like, “for users belonging to the group grp_test run the query”.

Source   
memberOf=cn=grp_test,ou=Groups,dc=zentyal

Continue reading

Apache LDAP authentication

The most basic authentication can be configured on a Apache is access by file, but in this post we will see how to configure Apache to authenticate users against an LDAP.

The advantages are obvious, we can use a centralized authentication LDAP directory, either to validate us in applications or to access the web services of the company.

For the examples we have used a Ubuntu 12.04 and Apache 2.2, the first thing we have to do is install the necessary Apache modules and activate them:

Source   
sudo aptitude install libapache2-mod-ldap-userdir
sudo a2enmod authnz_ldap

Continue reading