Monday, April 4, 2016

[389-users] Re: admin and Directory Manager accounts cannot log into 389-console

> I had the password for the admin, and the cn=Directory Manager account
> entries documented, and they no longer work anymore.

Can you describe "they don't work". Directory Server fails to start? The
cn=directory manager account will not bind? What error message do you get?

> I attempted to execute:
> pwdhash <newPassword> and copied the new {SSHA} hash into the appropriate
> field in the /etc/dirsrv/slapd-*E2WAN/dse.ldif *file *after shutting down
> both services*.

*what field* did you update? Did you do it for Directory Manager? cn=admin?

Did you copy the hash to look like:


Including the {ALGO} stanza at the front? 

> I don't know how to troubleshoot this application?  What log file where and
> when.

/var/log/dirsrv/slapd-<INSTANCE NAME>/errors is good for if the server won't
start, and will tell you if the hash format is messed up.

/var/log/dirsrv/slapd-<INSTANCE NAME>/access will tell you more about why an
account cannot bind.

Please provide *more* detail as this helps us to solve your issue. Exact steps,
what you changed, reasonable fake values for passwords for example. 


William Brown
Software Engineer
Red Hat, Brisbane

No comments:

Post a Comment