I'm setting up an OpenLDAP server to authenticate users in a domain on Ubuntu 9.04.
What's interesting/strange is that in the newest version of openldap for Ubuntu, the default is not to use the /etc/ldap/slapd.conf file - instead it stores its configs in cn=config in the database (this has lead to some headaches trying to follow tutorials that specify slapd.conf instead of the newer version).
Whenever I try to add to the database using ldapadd, it returns ldap_bind (49) Invalid Credentials (even when I'm sure I'm using the right password).
The database doesn't have anything in it yet, so starting from scratch isn't a problem, I've just encountered this several times (even after reconfiguring slapd). What's the solution?
Try specifying "-x" on the commandline. By default, the LDAP tools use SASL authentication, -x specifies "simple authentication".
I do not know if OpenLDAP returns subcodes on error 49's like Active Directory does. AD returns a subtype of the error code for bad password, versus bad DN.
Are you confident the DN is correct?