[Freedombox-discuss] Creating LDAP user failed.

permondes - sagen sagen at permondes.de
Thu Nov 23 20:39:35 UTC 2017


Am Mittwoch, den 22.11.2017, 22:10 +0100 schrieb permondes - sagen:
> Am Mittwoch, den 22.11.2017, 21:51 +0100 schrieb permondes - sagen:
> > Am Mittwoch, den 22.11.2017, 20:57 +0100 schrieb permondes - sagen:
> > > Hi,
> > > 
> > > creating a User in Plinth 0.16 gives this feedback:
> > > * Creating LDAP user failed.
> > > * User hahaha created.
> > > 
> > > Changing the password afterwards fails the LDAP operation but
> > > works successful (as 2nd message).
> > > 
> > > Issue is, that I am trying to set up another user for a radicale
> > > calendar. Trying to create the calendar in Evolution or DAVDroid
> > > gives an authentication error, so I presume it is related to the
> > > LDAP error. Is this right?
> > > 
> > > I have the feeling I had this issue before and managed to resolve
> > > it with the list, but cannot find any trace how I did this.
> > > 
> > > 	Dietmar
> > 
> > If I assign groups to the user, there are additional error
> > messages:
> > * Failed to add new user to admin group.
> > 
> > * Failed to add new user to wiki group.
> >   
> > _______________________________________________
> 
> I just found the log file  plith/status.log:
> > [2017-11-22 22:03:52,123] plinth.actions INFO     Executing command
> > - ['sudo', '-n', '/usr/share/plinth/actions/users', 'create-user',
> > 'newuser']
> > [2017-11-22 22:03:54,620] plinth.actions ERROR    Error executing
> > command - ['sudo', '-n', '/usr/share/plinth/actions/users',
> > 'create-user', 'newuser'], , Traceback (most recent call last):
> >   File "/usr/share/plinth/actions/users", line 371, in <module>
> >     main()
> >   File "/usr/share/plinth/actions/users", line 367, in main
> >     subcommand_method(arguments)
> >   File "/usr/share/plinth/actions/users", line 225, in
> > subcommand_create_user
> >     _run(['ldapadduser', arguments.username, 'users'])
> >   File "/usr/share/plinth/actions/users", line 357, in _run
> >     return subprocess.run(arguments, **kwargs)
> >   File "/usr/lib/python3.6/subprocess.py", line 418, in run
> >     output=stdout, stderr=stderr)
> > subprocess.CalledProcessError: Command '['ldapadduser', 'newuser',
> > 'users']' returned non-zero exit status 1.
> 
> and in ldapscripts.log:
> > Nov 22 22:03:53 freedombox ldapscripts: ldapadduser(root):
> > /usr/sbin/ldapadduser newuser users
> > SASL/EXTERNAL authentication started
> > SASL username:
> > gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
> > SASL SSF: 0
> > No such object (32)
> > Matched DN: dc=thisbox
> > SASL/EXTERNAL authentication started
> > SASL username:
> > gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
> > SASL SSF: 0
> > SASL/EXTERNAL authentication started
> > SASL username:
> > gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
> > SASL SSF: 0
> > ldap_add: No such object (32)
> > 	matched DN: dc=thisbox
> >   -> Error adding user newuser to LDAP
> 
> So the error is "No such object"
> On the web I found the answer: "You need to add an entry for
> dc=nerdbot,dc=net. You are trying to add
> branches to a tree with no root."
> So my configuration file is broken. How can I fix
> this?_______________________________________________

I discovered in /etc/ldapscripts 2 configuration files. I guess, the
one .dpkg-old was saved when an update overwrote the config file. Here
is the diff:

> xxx:/etc/ldapscripts$ diff ldapscripts.conf ldapscripts.conf.dpkg-old
> 2c2
> < #  Copyright (C) 2006-2017 Gana�l LAPLANCHE
> ---
> > #  Copyright (C) 2006-2016 Gana�l LAPLANCHE
> 90c90
> < PASSWORDGEN="pwgen"
> ---
> > PASSWORDGEN="true"
> 164a165,169
> > SERVER="ldapi://"
> > SASLAUTH="EXTERNAL"
> > SUFFIX="dc=thisbox"
> > USUFFIX="ou=Users"
> > GSUFFIX="ou=Groups"
> 
So the differences are in "PASSWORDGEN" and SERVER and the SUFFIXes.
Are the old settings Freedombox specific? Should I just copy the old
version over the new one?

	Dietmar
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20171123/0538e12b/attachment.html>


More information about the Freedombox-discuss mailing list