So last night I decided to patch my LDAP servers, big mistake, these two XKCD cartoons really define what happened
So it was supposed to be a quick patch, because I was already at R9.3
But ldap didn’t start, and I decided to do all three without validation.
Nagios alerted me to failed LDAP
When I booted it up there was this message in the logs
You have upgraded your openldap-servers package. There are actions that need to be performed. Please, read the /usr/share/openldap-servers/UPGRADE_INSTRUCTIONS file
I tried various things, restore ldap database, no go.
Instructions were unclear. But I found a site that said to use rpm to erase then reinstall with dnf. https://www.melberi.com/linuxadmin/ldap/ldap-not-starting
So I did that and got it to restart, but I could not log via one of the clients.
Unbeknownst to me, the client was using an old cert. So it was throwing TLS errors.
I tried a new machine and it worked.
Slept late so I am tired.
Weight: 346.2