[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Openldap on openshift



Hi.


you will need to change some settings as you seen.


Maybe you can take a look again  on this page for some ideas behind openshift.

https://blog.openshift.com/openshift-v3-deep-dive-docker-kubernetes/


.) the listening ports could not be >1024 by default if you not allowed the project to run as privileged user

.) The user is a random user as described

https://docs.openshift.org/latest/architecture/additional_concepts/authorization.html

please take also a look into this document

https://docs.openshift.org/latest/admin_guide/manage_scc.html


maybe this site also helps to solve the issue.

https://docs.openshift.org/latest/creating_images/guidelines.html


but at never the less I think you will need to set chmod 777 for some dirs.


Best regards

Aleks




From: users-bounces lists openshift redhat com <users-bounces lists openshift redhat com> on behalf of K Bennett <kevin bennett ags gmail com>
Sent: Wednesday, April 06, 2016 03:51
To: users lists openshift redhat com
Subject: Openldap on openshift
 
Hi all, I'm trying to get openldap running on openshift...

I tried building a couple of docker images: osixia/docker-openldap & dinkel/docker-openldap

But I get errors about permissions (log snippet below). It appears to be related to SELinux as when we try on a local environment without SELinux it works fine... 

I tried the openshift/openldap image and this builds fine, but it's not intended for production so it's not suitable...

Looking for some advice - what's the best way to get a stable, working openldap instance in our openshift environment (with SELinux). Can we change something to make the docker images above build?

Thanks

From build log:

Setting up slapd (2.4.40+dfsg-1+deb8u2) ...
slappasswd: error while loading shared libraries: cannot restore segment prot after reloc: Permission denied
Creating initial configuration... Loading the initial configuration from the ldif file () failed with
the following error while running slapadd:
slapadd: error while loading shared libraries: cannot restore segment prot after reloc: Permission denied
dpkg: error processing package slapd (--configure):
subprocess installed post-installation script returned error exit status 1
Setting up ldap-utils (2.4.40+dfsg-1+deb8u2) ...
Setting up openssl (1.0.1k-3+deb8u4) ...
Processing triggers for libc-bin (2.19-18+deb8u3) ...
Processing triggers for systemd (215-17+deb8u3) ...
Errors were encountered while processing:
slapd
E: Sub-process /usr/bin/dpkg returned an error code (1)
F0404 07:43:49.462418       1 builder.go:204] Error: build error: The command '/bin/sh -c apt-get -y update     && /container/tool/add-service-available :cfssl           && LC_ALL=C DEBIAN_FRONTEND=noninteractive apt-get install -y --force-yes --no-install-recommends        ldap-utils        openssl        slapd     && apt-get clean     && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*' returned a non-zero code: 100

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]