Created
October 6, 2023 17:57
-
-
Save gburd/f979a52a65d0feafb636cca16853fb4e to your computer and use it in GitHub Desktop.
Symas OpenLDAP in a container (thanks Bitnami!)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
``` | |
docker buildx build --format docker --progress=plain --no-cache --rm --platform linux/x86_64 --load -t symas/openldap:latest . | |
mkdir /tmp/ldap | |
chmod 0777 /tmp/ldap | |
clear; sudo rm -rf /tmp/ldap/{.ldap_setup_complete,slapd.d,data}; docker run --rm -e BITNAMI_DEBUG=true --name=symas-openldap -p 1389:1389 -p 1639:1639 --volume /tmp/ldap:/bitnami/openldap --user 1001 symas/openldap:latest | |
``` | |
gburd@floki ~/w/c/o/2/debian-11 (main)> sudo rm -rf /tmp/ldap/{.ldap_setup_complete,slapd.d,data}; docker run --rm -e BITNAMI_DEBUG=true --name=symas-openldap -p 1389:1389 -p 1639:1639 --volume /tmp/ldap:/bitnami/openldap --user 1001 symas/openldap:latest | |
17:55:10.09 INFO ==> ** Starting LDAP setup ** | |
17:55:10.12 INFO ==> Validating settings in LDAP_* env vars | |
17:55:10.13 INFO ==> Initializing OpenLDAP... | |
17:55:10.13 DEBUG ==> Ensuring expected directories/files exist... | |
17:55:10.14 WARN ==> LDAP_DATA_DIR=/bitnami/openldap/data has permissions 0755/drwxr-xr-x | |
17:55:10.16 WARN ==> LDAP_ONLINE_CONF_DIR=/bitnami/openldap/slapd.d has permissions 0755/drwxr-xr-x | |
17:55:10.19 INFO ==> Setting up /bitnami/openldap/{data,slapd.d} config and data. | |
17:55:10.19 INFO ==> Creating LDAP online configuration | |
17:55:10.19 INFO ==> Creating slapd.ldif | |
17:55:10.22 INFO ==> Starting OpenLDAP server in background | |
652049fe.0db54670 0x7f2248a65640 @(#) $OpenLDAP: slapd 2.6.6 (Aug 8 2023 21:23:03) $ | |
openldap | |
652049fe.0edb06ff 0x7f2248a65640 slapd starting | |
17:55:11.23 INFO ==> Configure LDAP credentials for admin user | |
SASL/EXTERNAL authentication started | |
652049ff.0eaacfc4 0x7f22077fe700 conn=1000 fd=12 ACCEPT from PATH=/tmp/ldapi (PATH=/tmp/ldapi) | |
652049ff.0eabf6b0 0x7f22077fe700 conn=1000 op=0 BIND dn="" method=163 | |
652049ff.0eac8611 0x7f22077fe700 conn=1000 op=0 BIND authcid="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" authzid="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" | |
652049ff.0eacc8f8 0x7f22077fe700 conn=1000 op=0 BIND dn="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" mech=EXTERNAL bind_ssf=0 ssf=71 | |
652049ff.0ead2f13 0x7f22077fe700 conn=1000 op=0 RESULT tag=97 err=0 qtime=0.000006 etime=0.000097 text= | |
SASL username: gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth | |
SASL SSF: 0 | |
652049ff.0eb3f9ba 0x7f2206ffd700 conn=1000 op=1 MOD dn="olcDatabase={2}mdb,cn=config" | |
652049ff.0eb4c990 0x7f2206ffd700 conn=1000 op=1 MOD attr=olcSuffix | |
652049ff.0ebb255b 0x7f2206ffd700 conn=1000 op=1 RESULT tag=103 err=0 qtime=0.000015 etime=0.000513 text= | |
652049ff.0ebfea1d 0x7f22077fe700 conn=1000 op=2 MOD dn="olcDatabase={2}mdb,cn=config" | |
652049ff.0ec0a9f4 0x7f22077fe700 conn=1000 op=2 MOD attr=olcRootDN | |
652049ff.0ec5f2c3 0x7f22077fe700 conn=1000 op=2 RESULT tag=103 err=0 qtime=0.000012 etime=0.000425 text= | |
652049ff.0ec9624d 0x7f2206ffd700 conn=1000 op=3 MOD dn="olcDatabase={2}mdb,cn=config" | |
652049ff.0eca26e4 0x7f2206ffd700 conn=1000 op=3 MOD attr=olcRootPW | |
652049ff.0ecf74fc 0x7f2206ffd700 conn=1000 op=3 RESULT tag=103 err=0 qtime=0.000014 etime=0.000424 text= | |
652049ff.0ed16b64 0x7f22077fe700 conn=1000 op=4 MOD dn="olcDatabase={1}monitor,cn=config" | |
652049ff.0ed1bb83 0x7f22077fe700 conn=1000 op=4 MOD attr=olcAccess | |
652049ff.0ed58b2f 0x7f22077fe700 conn=1000 op=4 RESULT tag=103 err=0 qtime=0.000008 etime=0.000286 text= | |
652049ff.0ed6b4ba 0x7f22077fe700 conn=1000 op=5 UNBIND | |
652049ff.0ed727c9 0x7f22077fe700 conn=1000 fd=12 closed | |
modifying entry "olcDatabase={2}mdb,cn=config" | |
modifying entry "olcDatabase={2}mdb,cn=config" | |
modifying entry "olcDatabase={2}mdb,cn=config" | |
modifying entry "olcDatabase={1}monitor,cn=config" | |
17:55:11.25 INFO ==> Setting up optional config... | |
17:55:11.25 INFO ==> Adding LDAP extra schemas | |
SASL/EXTERNAL authentication started | |
652049ff.0fa45081 0x7f2206ffd700 conn=1001 fd=12 ACCEPT from PATH=/tmp/ldapi (PATH=/tmp/ldapi) | |
652049ff.0fa5d2db 0x7f2206ffd700 conn=1001 op=0 BIND dn="" method=163 | |
652049ff.0fa6564f 0x7f2206ffd700 conn=1001 op=0 BIND authcid="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" authzid="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" | |
652049ff.0fa6a576 0x7f2206ffd700 conn=1001 op=0 BIND dn="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" mech=EXTERNAL bind_ssf=0 ssf=71 | |
652049ff.0fa716fd 0x7f2206ffd700 conn=1001 op=0 RESULT tag=97 err=0 qtime=0.000009 etime=0.000093 text= | |
SASL username: gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth | |
SASL SSF: 0 | |
652049ff.0fab5358 0x7f22077fe700 conn=1001 op=1 ADD dn="cn=cosine,cn=schema,cn=config" | |
652049ff.0fba596f 0x7f22077fe700 conn=1001 op=1 RESULT tag=105 err=0 qtime=0.000012 etime=0.001016 text= | |
652049ff.0fbc9e83 0x7f22077fe700 conn=1001 op=2 UNBIND | |
652049ff.0fbd2a0a 0x7f22077fe700 conn=1001 fd=12 closed | |
adding new entry "cn=cosine,cn=schema,cn=config" | |
SASL/EXTERNAL authentication started | |
652049ff.103fa3b1 0x7f2206ffd700 conn=1002 fd=12 ACCEPT from PATH=/tmp/ldapi (PATH=/tmp/ldapi) | |
652049ff.1041180a 0x7f22077fe700 conn=1002 op=0 BIND dn="" method=163 | |
652049ff.1041f2d4 0x7f22077fe700 conn=1002 op=0 BIND authcid="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" authzid="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" | |
652049ff.10423b4b 0x7f22077fe700 conn=1002 op=0 BIND dn="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" mech=EXTERNAL bind_ssf=0 ssf=71 | |
652049ff.104286db 0x7f22077fe700 conn=1002 op=0 RESULT tag=97 err=0 qtime=0.000010 etime=0.000109 text= | |
SASL username: gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth | |
SASL SSF: 0 | |
652049ff.10464a2b 0x7f2206ffd700 conn=1002 op=1 ADD dn="cn=inetorgperson,cn=schema,cn=config" | |
652049ff.10509474 0x7f2206ffd700 conn=1002 op=1 RESULT tag=105 err=0 qtime=0.000009 etime=0.000699 text= | |
652049ff.1053a431 0x7f2206ffd700 conn=1002 op=2 UNBIND | |
652049ff.10540b1e 0x7f2206ffd700 conn=1002 fd=12 closed | |
adding new entry "cn=inetorgperson,cn=schema,cn=config" | |
SASL/EXTERNAL authentication started | |
652049ff.10a3b53b 0x7f22077fe700 conn=1003 fd=12 ACCEPT from PATH=/tmp/ldapi (PATH=/tmp/ldapi) | |
652049ff.10a4f4fb 0x7f2206ffd700 conn=1003 op=0 BIND dn="" method=163 | |
652049ff.10a5c04f 0x7f2206ffd700 conn=1003 op=0 BIND authcid="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" authzid="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" | |
652049ff.10a5f040 0x7f2206ffd700 conn=1003 op=0 BIND dn="gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth" mech=EXTERNAL bind_ssf=0 ssf=71 | |
652049ff.10a62eca 0x7f2206ffd700 conn=1003 op=0 RESULT tag=97 err=0 qtime=0.000007 etime=0.000091 text= | |
SASL username: gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth | |
SASL SSF: 0 | |
652049ff.10aa104e 0x7f22077fe700 conn=1003 op=1 ADD dn="cn=nis,cn=schema,cn=config" | |
652049ff.10b02b5e 0x7f22077fe700 conn=1003 op=1 RESULT tag=105 err=0 qtime=0.000007 etime=0.000422 text= | |
652049ff.10b223be 0x7f22077fe700 conn=1003 op=2 UNBIND | |
652049ff.10b26f79 0x7f22077fe700 conn=1003 fd=12 closed | |
adding new entry "cn=nis,cn=schema,cn=config" | |
17:55:11.28 INFO ==> Creating LDAP default tree | |
652049ff.11c9175d 0x7f2206ffd700 conn=1004 fd=12 ACCEPT from PATH=/tmp/ldapi (PATH=/tmp/ldapi) | |
652049ff.11ca8be3 0x7f22077fe700 conn=1004 op=0 BIND dn="cn=admin,dc=example,dc=org" method=128 | |
652049ff.11cb182a 0x7f22077fe700 conn=1004 op=0 BIND dn="cn=admin,dc=example,dc=org" mech=SIMPLE bind_ssf=0 ssf=71 | |
652049ff.11cb5ffa 0x7f22077fe700 conn=1004 op=0 RESULT tag=97 err=0 qtime=0.000006 etime=0.000072 text= | |
652049ff.11cde359 0x7f2206ffd700 conn=1004 op=1 ADD dn="dc=example,dc=org" | |
652049ff.12c5dc43 0x7f2206ffd700 conn=1004 op=1 RESULT tag=105 err=0 qtime=0.000006 etime=0.016254 text= | |
652049ff.12cbf13e 0x7f22077fe700 conn=1004 op=2 ADD dn="ou=users,dc=example,dc=org" | |
652049ff.12eaf61c 0x7f22077fe700 conn=1004 op=2 RESULT tag=105 err=0 qtime=0.000019 etime=0.002081 text= | |
652049ff.12ef19a4 0x7f2206ffd700 conn=1004 op=3 ADD dn="cn=user01,ou=users,dc=example,dc=org" | |
652049ff.131588f6 0x7f2206ffd700 conn=1004 op=3 RESULT tag=105 err=0 qtime=0.000020 etime=0.002562 text= | |
652049ff.13195d1c 0x7f22077fe700 conn=1004 op=4 ADD dn="cn=user02,ou=users,dc=example,dc=org" | |
652049ff.1338ca52 0x7f22077fe700 conn=1004 op=4 RESULT tag=105 err=0 qtime=0.000009 etime=0.002087 text= | |
652049ff.133cb071 0x7f2206ffd700 conn=1004 op=5 ADD dn="cn=readers,ou=users,dc=example,dc=org" | |
652049ff.135e4af5 0x7f2206ffd700 conn=1004 op=5 RESULT tag=105 err=0 qtime=0.000019 etime=0.002242 text= | |
652049ff.1361ff37 0x7f22077fe700 conn=1004 op=6 UNBIND | |
652049ff.136389c1 0x7f22077fe700 conn=1004 fd=12 closed | |
adding new entry "dc=example,dc=org" | |
adding new entry "ou=users,dc=example,dc=org" | |
adding new entry "cn=user01,ou=users,dc=example,dc=org" | |
adding new entry "cn=user02,ou=users,dc=example,dc=org" | |
adding new entry "cn=readers,ou=users,dc=example,dc=org" | |
17:55:11.32 INFO ==> OpenLDAP configuration and databases are now configured for service. | |
652049ff.141d5107 0x7f2207fff700 daemon: shutdown requested and initiated. | |
652049ff.14208266 0x7f2207fff700 slapd shutdown: waiting for 0 operations/tasks to finish | |
652049ff.14321085 0x7f2248a65640 slapd stopped. | |
17:55:12.35 INFO ==> Load any user-provided custom initialization scripts | |
17:55:12.36 INFO ==> The user's custom files directory /docker-entrypoint-initdb.d is missing or empty. | |
17:55:12.36 INFO ==> ** LDAP setup finished! ** | |
17:55:12.40 INFO ==> ** Starting slapd ** | |
65204a00.188d690d 0x7fd2e4a6f640 @(#) $OpenLDAP: slapd 2.6.6 (Aug 8 2023 21:23:03) $ | |
openldap | |
65204a00.18ca3f83 0x7fd2e4a6f640 slapd starting |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment