Applies to: All versions of Centrify ldapproxy
Question:After following steps mentioned in page 201 of the below guide, how does one start ldapproxy?
https://docs.centrify.com/en/css/suite2015/centrify-unix-adminguide.pdfAnswer:
ldapproxy should be run as follows by root or privileged user.
#/usr/share/centrifydc/libexec/slapd -f /etc/centrifydc/openldap/ldapproxy.slapd.conf -h ldap://engcen5.centrifyimage.vms
Where /engcen5.centrifyimage.vms is the name of the Centrify server running slapd/ldapproxy
Note: The -h flag is very important, otherwise slapd will only accept connections from localhost
One can verify if slapd is running or not by running the below command
-bash-3.00# ps -ef|grep slapd
root 17695 1 0 Mar 24 ? 0:00 /usr/share/centrifydc/libexec/slapd -f /etc/centrifydc/openldap/ldapproxy.slapd
-bash-3.00#
One can test ldapproxy by running a query and it show display the attributes of the computer object
# /usr/share/centrifydc/bin/ldapsearch -h engcen5.centrifyimage.vms -x -b "dc=centrifyimage,dc=vms" "(&(objectclass=computer)(cn=engcen5))" memberof
Where engcen5.centrifyimage.vms is the name of the ldapserver and "dc=" should be changed to the AD domain name as seen in adinfo output and eng5 is the name of the computer object searched.
