Initializing ldap...FAILED (256) on Mac OSX 10.4.4

[Britt]

Unfortunately, I ran into the same "Initializing ldap...FAILED (256)" problem as above, but removing ldaps:// from/opt/zimbra/bin/ldap and the 4 TLS lines from both slapd.conf files did not fix the slapd errors.

I'm running OS X Server 10.4.5. My process is to download all Java updates, set symlink to CurrentJDK to 1.5.0, install Zimbra 3.0GA package, chmod 777 on /opt/zimbra/ssl, change the ldap configs listed above, and then ran zmsetup.pl.

Here's the zmsetup log:
-----------------
** Importing CA

Certificate was added to keystore
keytool error: java.io.FileNotFoundException: /System/Library/Frameworks/JavaVM.framework/Versions/1.5/Home/lib/security/cacerts (Permission denied)
** Creating keystore

** Creating server cert request

Generating a 1024 bit RSA private key
........++++++
...................................++++++
unable to write 'random state'
writing new private key to '/opt/zimbra/ssl/ssl/server/server.key'
-----
** Signing cert request

Using configuration from /opt/zimbra/ssl/ssl/zmssl.cnf
Check that the request matches the signature
Signature ok
Certificate Details:
Serial Number: 8 (0x8)
Validity
Not Before: Feb 16 15:57:15 2006 GMT
Not After : Feb 16 15:57:15 2007 GMT
Subject:
countryName = US
stateOrProvinceName = N/A
organizationName = Zimbra Collaboration Suite
commonName = ldap.rcps.info
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
OpenSSL Generated Certificate
X509v3 Subject Key Identifier:
A6:6A:35:A9:B7:7A:9A:C6:A7:528F:2E:0B:62:4B:98 :67:52:F5
X509v3 Authority Key Identifier:
DirName:/C=US/ST=N/A/L=N/A/O=Zimbra Collaboration Suite/CN=ldap.rcps.info
serial:C6:20:EF:73:EB:A7:F5:C3

Certificate is to be certified until Feb 16 15:57:15 2007 GMT (365 days)

Write out database with 1 new entries
Data Base Updated
unable to write 'random state'
Signature ok
subject=/C=US/ST=NA/L=NA/O=Zimbra/OU=Zimbra/CN=ldap.rcps.info
Getting CA Private Key
unable to write 'random state'
ERROR - failed to start slapd

-------------

I also tried the manual zmcreateca/zmcreatecert and hand-start ldap fix.

Any other ideas?

Britt

[marcmac]

can your host resolve it's hostname via DNS?

[Britt]

Yeah, DNS is working great.

root# host ldap.rcps.info
ldap.rcps.info has address 208.27.234.114
root# host 208.27.234.114
114.234.27.208.in-addr.arpa domain name pointer ldap.rcps.info.

[marcmac]

Not sure why slapd isn't starting (just saw that line)

Can you try starting it manually (su - zimbra, ldap start)

[Britt]

Nope, still get a failed to start slapd error.

ldap:/Users/tech root# su zimbra
ldap:/Users/tech zimbra$ ldap start
ERROR - failed to start slapd

[marcmac]

su - zimbra, not su zimbra. Big difference.

[Britt]

Tried it with su - zimbra, same result.

ldap:/Users/tech root# su - zimbra
ldap:~ zimbra$ ldap start
ERROR - failed to start slapd

Sorry, never used the -/-l flag before.

Thinking about doing a clean install of the OS to 10.4.4 instead of 10.4.5, just in case something odd was added and just not mentioned in the release notes.

[marcmac]

anything in /var/log/zimbra.log around the ldap startup time? If not -
try
su - zimbra
sh -x bin/ldap start

Check for the "sudo" line that it executes, and run that by hand, adding -d 1 to the line (for debugging).

[Britt]

Nothing was in logs other than a repeated

Feb 16 12:22:24 ldap-rcps-info slapd[2671]: /opt/zimbra/openldap/etc/openldap/schema/zimbra.schema: line 2889: bad config line (ignored)\n
Feb 16 12:22:24 ldap-rcps-info slapd[2671]: bdb_db_init: Initializing BDB database\n

When I ran the sudo command everthing looked good up to the end:

backend_startup: starting ""
bdb_db_open: dbenv_open(/opt/zimbra/openldap-data)
bdb(): /opt/zimbra/openldap-data/__db.001: No such file or directory
bdb_db_open: dbenv_open failed: No such file or directory (2)
backend_startup: bi_db_open failed! (2)
slapd shutdown: initiated
====> bdb_cache_release_all
bdb(): DB_ENV->lock_id_free interface requires an environment configured for the locking subsystem
slapd shutdown: freeing system resources.
bdb(): txn_checkpoint interface requires an environment configured for the transaction subsystem
bdb_db_destroy: txn_checkpoint failed: Invalid argument (22)
slapd stopped.
connections_destroy: nothing to destroy.

When I checked /opt/zimbra/openldap-data/ it didn't exist (!) so I did a rm -R /opt/Zimbra and rm -R /Library/Reciepts/zimbra*, reinstalled the Zimbra package, edited slapd.conf and /opt/zimbra/bin/ldap and ran zmsetup and voila, ldap started.

I don't know what I was doing wrong the first few times, or why the openldap-data was missing, but thanks a bunch for the prompt help.

[eleybourn]

In the MacOSXx86 version, (I am not sure about any other since I only use this one), the line to edit it.

Code:

sudo /opt/zimbra/openldap-2.3.21/libexec/slapd -l LOCAL0 -4 -u zimbra -h "$my_url" \
   -f /opt/zimbra/conf/slapd.conf

and replacing the $my_url with ldap://:389

TTFN