LDAP daemon: bind(7) failed errno=13 (Permission denied)

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
Post Reply
SevenDP
Posts: 1
Joined: Sat Sep 13, 2014 3:05 am

LDAP daemon: bind(7) failed errno=13 (Permission denied)

Post by SevenDP »

hi

please help me

i have running Release 7.2.0_GA_2669.RHEL6_64_20120410002025 RHEL6_64 FOSS edition works great
...

zindus doing ok. but when im trying to connect zimbra LDAP to Openfire got problem

this mail server got 2 eth behind NAT

eth1 192.168.1.201 connect router for internal LAN 10.x.x.x

eth0 10.100.100.2 connect router for internet/WAN
already setup split dns using dnsmasq


[zimbra@mail ~]$ dig mail.xxxxxxxx.com mx



; <<>> DiG 9.7.3-P3-RedHat-9.7.3-8.P3.el6 <<>> mail.xxxxxxxx.com mx

;; global options: +cmd

;; Got answer:

;; ->>HEADER<
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:

;mail.xxxxxxxx.com. IN MX
;; AUTHORITY SECTION:

xxxxxxxx.com. 1800 IN SOA ns1.xx.net. admin.domain.com. 2007052328 3600 600
1209600 3600
;; Query time: 62 msec

;; SERVER: 127.0.0.1#53(127.0.0.1)

;; WHEN: Tue Jan 29 11:47:56 2013

;; MSG SIZE rcvd: 105


[zimbra@mail ~]$ dig mail.xxxxxxxx.com any



; <<>> DiG 9.7.3-P3-RedHat-9.7.3-8.P3.el6 <<>> mail.xxxxxxxx.com any

;; global options: +cmd

;; Got answer:

;; ->>HEADER<
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:

;mail.xxxxxxxx.com. IN ANY
;; ANSWER SECTION:

mail.xxxxxxxx.com. 0 IN A 10.100.100.2
;; Query time: 0 msec

;; SERVER: 127.0.0.1#53(127.0.0.1)

;; WHEN: Tue Jan 29 11:48:25 2013

;; MSG SIZE rcvd: 53


[zimbra@mail ~]$ host $(hostname)



mail.xxxxxxxx.com has address 10.100.100.2


[zimbra@mail ~]$ cat /etc/resolv.conf



# Generated by NetworkManager

search xxxxxxxx.com

nameserver 127.0.0.1

nameserver 192.168.1.201


[zimbra@mail ~]$ cat /etc/hosts



127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4

::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
10.100.100.2 mail.xxxxxxxx.com mail


[zimbra@mail ~]$ cat /etc/dnsmasq.conf



server=118.x.x.x ---> public IP/WAN

server=8.8.8.8

domain=xxxxxxxx.com

mx-host=xxxxxxxx.com,mail.xxxxxxxx.com,5

listen-address=127.0.0.1

srv-host=_ldap._tcp.xxxxxxxx.com,mail.xxxxxxxx.com,389


LDAP start work ok, but i can not connect.

trying to start ldap manually
[zimbra@mail ~]$ /opt/zimbra/openldap/sbin/slapd -d7 -l LOCAL0 -4 -u zimbra -h

ldap://mail.xxxxxxxx.com:389 -F /opt/zimbra/data/ldap/config



51074cb2 @(#) $OpenLDAP: slapd 2.4.30 (Mar 12 2012 17:11:57) $

build@zre-rhel6-64.eng.vmware.com:/home/build/p4/HELIX/ThirdParty/openldap/openldap-
2.4.30.6z/servers/slapd

ldap_pvt_gethostbyname_a: host=mail.xxxxxxxx.com, r=0

51074cb2 daemon_init: ldap://mail.xxxxxxxx.com:389

51074cb2 daemon_init: listen on ldap://mail.xxxxxxxx.com:389

51074cb2 daemon_init: 1 listeners to open...

ldap_url_parse_ext(ldap://mail.xxxxxxxx.com:389)

51074cb2 daemon: bind(7) failed errno=13 (Permission denied)

51074cb2 slap_open_listener: failed on ldap://mail.xxxxxxxx.com:389

51074cb2 slapd stopped.

51074cb2 connections_destroy: nothing to destroy.
already open port 389. is that because /etc/hosts have 10.100.100.2

but /etc/resolv have nameserver 192.168.1.201 ?
please help ...

thanks

dp
Julia
Posts: 1
Joined: Fri Jan 19, 2018 12:44 am

Re: LDAP daemon: bind(7) failed errno=13 (Permission denied)

Post by Julia »

Did you ever figure this out? I've got the same issue
Post Reply