[LDAP] CentOS7安裝OpenLDAP後啟動報錯解決
阿新 • • 發佈:2019-01-10
問題
CentOS7.3下yum線上安裝的openldap-servers-2.4.44-20.el7.x86_64,安裝配置完成後啟動報錯,報錯日誌:
[[email protected] ~]# systemctl start slapd Job for slapd.service failed because the control process exited with error code. See "systemctl status slapd.service" and "journalctl -xe" for details. [[email protected]
~]# journalctl -xe -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit slapd.service has begun starting up. Jan 08 16:03:15 openldap runuser[20991]: pam_unix(runuser:session): session opened for user ldap by (uid=0) Jan 08 16:03:15 openldap runuser[20991]: pam_unix(runuser:session): session closed for user ldap Jan 08 16:03:15 openldap slapd[21002]: @(#) $OpenLDAP: slapd 2.4.44 (Oct 30 2018 23:14:27) $[email protected]:/builddir/build/BUILD/openldap-2.4.44/openldap-2.4.44 Jan 08 16:03:15 openldap slapd[21002]: ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={1}monitor.ldif Jan 08 16:03:15 openldap slapd[21002]: ldif_read_file: checksum error on "/etc/openldap/slapd.d/cn=config/olcDatabase={2}hdb.ldif" Jan 08 16:03:15 openldap slapd[21002]: tlsmc_cert_create_hash_symlink: ERROR: OS error: Permission denied Jan 08 16:03:15 openldap slapd[21002]: main: TLS init def ctx failed: -1 Jan 08 16:03:15 openldap slapd[21002]: slapd stopped. Jan 08 16:03:15 openldap slapd[21002]: connections_destroy: nothing to destroy. Jan 08 16:03:15 openldap systemd[1]: slapd.service: control process exited, code=exited status=1 Jan 08 16:03:15 openldap systemd[1]: Failed to start OpenLDAP Server Daemon. -- Subject: Unit slapd.service has failed -- Defined-By: systemd -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit slapd.service has failed. -- -- The result is failed. Jan 08 16:03:15 openldap systemd[1]: Unit slapd.service entered failed state. Jan 08 16:03:15 openldap systemd[1]: slapd.service failed. Jan 08 16:03:15 openldap polkitd[778]: Unregistered Authentication Agent for unix-process:20982:1499293 (system bus name :1.187, obje lines 3729-3753/3753 (END)
解決
關閉SELinux
[[email protected] ~]# vi /etc/selinux/config
SELINUX=disabled
修改配置後重啟機器。
再次啟動OpenLDAP,啟動成功。
[[email protected] ~]# systemctl start slapd
[[email protected] ~]# systemctl is-active slapd
active
[[email protected] ~]#