From owner-freebsd-questions@FreeBSD.ORG  Thu Mar 24 20:47:42 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5245316A4CE
	for <freebsd-questions@freebsd.org>;
	Thu, 24 Mar 2005 20:47:42 +0000 (GMT)
Received: from esmtp.webtent.net (esmtp.webtent.net [208.38.145.5])
	by mx1.FreeBSD.org (Postfix) with SMTP id 7F1C143D54
	for <freebsd-questions@freebsd.org>;
	Thu, 24 Mar 2005 20:47:41 +0000 (GMT)
	(envelope-from lists@webtent.net)
Received: from localhost (localhost.webtent.net [127.0.0.1])
	with ESMTP id 8947CEBDE4	for <freebsd-questions@freebsd.org>;
	Thu, 24 Mar 2005 15:47:35 -0500 (EST)
Received: from esmtp.webtent.net ([127.0.0.1])
 by localhost (esmtp.webtent.net [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 41066-03 for <freebsd-questions@freebsd.org>;
 Thu, 24 Mar 2005 15:47:35 -0500 (EST)
Received: from [192.168.1.11] (unknown [209.241.118.235])
	with ESMTP id BA5D1EBDFE	for <freebsd-questions@freebsd.org>;
	Thu, 24 Mar 2005 15:47:32 -0500 (EST)
From: Robert Fitzpatrick <lists@webtent.net>
To: FreeBSD <freebsd-questions@freebsd.org>
Content-Type: text/plain
Organization: WebTent Networking, Inc.
Message-Id: <1111697249.6753.151.camel@columbus>
Mime-Version: 1.0
X-Mailer: Ximian Evolution 1.4.6 
Date: Thu, 24 Mar 2005 15:47:29 -0500
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavisd-new using ClamAV at webtent.net
Subject: new install only starts on boot
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: robert@webtent.com
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Mar 2005 20:47:42 -0000

I am installed the FreeBSD 5.3 port for openldap-sasl-2.2.23, which
starts fine on boot, but will not restart. I get the error 'main: TLS
init def ctx failed: -1' in the debug.log even if TLS options are not
setup. I take a default slapd.conf file and adjust to my domain and it
will not restart. Does the SASL all have to be setup in this
openldap-sasl port before the server will even start? I have the Cyrus
IMAP working with SASL+krb5 now fine. I compared my slapd.conf file to
one on another server with the standard openldap port without SASL and
looks fine, also checked permissions, etc. How can I troubleshoot this
further? There is an krb5 key in the keytab file for the host and ldap
service, but again, I don't even have these things enabled in ldap at
the moment, just trying to get a successful restart.

The only error seen in the logs besides the above is there during boot
as well:

Mar 23 11:27:12 host slapd[456]: SQL engine 'mysql' not supported
Mar 23 11:27:12 host slapd[456]: auxpropfunc error no mechanism
available

However, I have googled this and it seems that it may be harmless and
other services using SASL, such as imapd, spit out the same thing.

Here is some info from my setup:

slap.conf:
include         /usr/local/etc/openldap/schema/core.schema
loglevel        4196
pidfile         /var/run/openldap/slapd.pid
argsfile        /var/run/openldap/slapd.args
database        bdb
suffix          "dc=domain,dc=tld"
rootdn          "cn=Manager,dc=domain,dc=tld"
rootpw          secret
directory       /var/db/openldap-data
index   objectClass     eq

host# ls -la /usr/local/etc/openldap/
total 40
drwxr-xr-x   5 ldap  ldap    512 Mar 19 18:44 .
drwxr-xr-x  15 root  wheel  1536 Mar 24 10:15 ..
drwxr-xr-x   2 ldap  ldap    512 Mar 24 10:15 certs
-rw-r--r--   1 ldap  ldap   8879 Nov 28 16:55 ldap.conf
drwxr-xr-x   3 ldap  ldap   1024 Mar 19 18:44 schema
-rw-r--r--   1 ldap  ldap    314 Mar 24 09:58 slapd.access
-rw-------   1 ldap  ldap   2976 Mar 24 10:23 slapd.conf
host# ls -la /usr/local/etc/openldap/schema
total 338
drwxr-xr-x  3 ldap  ldap   1024 Mar 19 18:44 .
drwxr-xr-x  5 ldap  ldap    512 Mar 19 18:44 ..
-r--r--r--  1 ldap  ldap  19562 Mar 19 18:44 core.schema
host# ls -la /var/run/openldap/
total 4
drwxr-xr-x  2 ldap  ldap    512 Mar 24 15:31 .
drwxr-xr-x  6 root  wheel  1024 Mar 24 10:21 ..
srwxr-xr-x  1 root  ldap      0 Mar 24 15:31 ldapi
host# ls -la /var/db/openldap-data
total 568
drwx------   2 ldap  ldap      512 Mar 23 11:27 .
drwxr-xr-x  11 root  wheel     512 Mar 24 15:21 ..
-rw-------   1 ldap  ldap     8192 Mar 24 10:01 __db.001
-rw-------   1 ldap  ldap   270336 Mar 24 10:01 __db.002
-rw-------   1 ldap  ldap    98304 Mar 24 10:01 __db.003
-rw-------   1 ldap  ldap   368640 Mar 24 10:01 __db.004
-rw-------   1 ldap  ldap    24576 Mar 24 10:01 __db.005
-rw-------   1 ldap  ldap     8192 Mar 24 10:01 dn2id.bdb
-rw-------   1 ldap  ldap    32768 Mar 24 10:01 id2entry.bdb
-rw-------   1 ldap  ldap    44451 Mar 24 10:01 log.0000000001

-- 
Robert