API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 19th, 2019
142
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.24 KB | None | 0 0
raw download clone embed print report
  1. Mar 4 07:27:11 client-desktop nslcd[3198]: [90cde7] <authc="johndoe"> ldap_result() failed: Insufficient access: Operations are restricted to bind/unbind/abandon/StartTLS/modify password
  2. Mar 4 07:27:11 client-desktop nslcd[3198]: [dcc233] <authc="johndoe"> cn=John Doe,ou=people,cd=domain,dc=com: lookup failed: Invalid credentials
  3.  
  4. # John Doe, people, domain.com
  5. dn: cn=John Doe,ou=people,dc=domain,dc=com
  6. cn: John Doe
  7. sn: Doe
  8. objectClass: top
  9. objectClass: person
  10. objectClass: posixAccount
  11. objectClass: shadowAccount
  12. uid: johndoe
  13. uidNumber: 1003
  14. gidNumber: 1000
  15. homeDirectory: /home/johndoe
  16. loginShell: /bin/bash
  17. userPassword: e1NTSEF9VWFSMDVsSGNIWFMxcnJ5VzBtaWRkOHFmTDE1ai9RYlQ=
  18. pwdReset: TRUE # This attribute only appears if I explicitly request it
  19.  
  20. # policies, domain.com
  21. dn: ou=policies,dc=domain,dc=com
  22. objectClass: top
  23. objectClass: organizationalUnit
  24. ou: policies
  25.  
  26. pwdInHistory: 3
  27. pwdLockout: TRUE
  28. pwdMaxFailure: 3
  29. pwdLockoutDuration: 30
  30. pwdMustChange: TRUE
  31. pwdSafeModify: FALSE
  32. pwdAllowUserChange: TRUE
  33. pwdFailureCountInterval: 0
  34. pwdGraceAuthNLimit: 0
  35.  
  36. # {1}hdb, config
  37. dn: olcDatabase={1}hdb,cn=config
  38. objectClass: olcDatabaseConfig
  39. objectClass: olcHdbConfig
  40. olcDatabase: {1}hdb
  41. olcDbDirectory: /var/lib/ldap
  42. olcSuffix: dc=domain,dc=com
  43. olcAccess: {0}to attrs=userPassword by self write by * auth
  44. olcAccess: {1}to attrs=shadowLastChange by self write by * read
  45. olcAccess: {2}to attrs=userPKCS12 by self read by * none
  46. olcAccess: {3}to * by * read
  47. olcRootDN: cn=admin,dc=domain,dc=com
  48. olcRootPW: {SSHA}############## omited
  49. olcDbCacheSize: 10000
  50. olcDbCheckpoint: 1024 5
  51. olcDbConfig: {0}set_cachesize 0 15000000 1
  52. olcDbConfig: {1}set_lg_regionmax 262144
  53. olcDbConfig: {2}set_lg_bsize 2097152
  54. olcDbConfig: {3}set_flags DB_LOG_AUTOREMOVE
  55. olcDbConfig: {4}set_lk_max_locks 30000
  56. olcDbConfig: {5}set_lk_max_objects 30000
  57. olcDbIDLcacheSize: 30000
  58. olcDbIndex: objectclass eq
  59. [...more indexes...]
  60.  
  61. # {0}ppolicy, {1}hdb, config
  62. dn: olcOverlay={0}ppolicy,olcDatabase={1}hdb,cn=config
  63. objectClass: top
  64. objectClass: olcConfig
  65. objectClass: olcOverlayConfig
  66. objectClass: olcPPolicyConfig
  67. olcOverlay: {0}ppolicy
  68. olcPPolicyDefault: cn=default,ou=policies,dc=domain,dc=com
  69. olcPPolicyHashCleartext: TRUE
  70.  
  71. olcPPolicyUseLockout: FALSE
  72. olcPPolicyForwardUpdates: FALSE
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!