ISC Bind 9.11 and dyndb-ldap

Pallissard, Matt matt at pallissard.net
Tue Oct 18 01:24:59 UTC 2016


On 10/17/2016 05:50 PM, Mark Andrews wrote:
> In message <d22a356f-c07b-7992-ad67-6a202e15a88a at pallissard.net>, "Pallissard, Matthew" writes:
>> On 10/16/2016 09:34 PM, Mark Andrews wrote:
>>> In message <cc788a8c-0d45-4726-b6c1-01766a8b5a83 at typeapp.com>, "Pallissard, Matt" writes:
>>>>
>>>> Has anyone successfully used LDAP as a dynamic back-end for bind 9.11?
>>>>
>>>> Unless I'm reading the release notes/new features pages incorrectly the bind-dyndb-ldap plugin has been rolled into ISC's official release a
>> nd I shouldn't have to mess around with patching/building it from source.
>>>>
>>>>
>>>> Yet I get the following errors upon startup;
>>>>
>>>> named[9937]: loading configuration from '/etc/named.conf'
>>>> named[9937]: /etc/named.conf:23: unknown option 'dynamic-db'
>>>> named[9937]: loading configuration: failure
>>>> named[9937]: exiting (due to fatal error)
>>>> systemd[1]: named.service: Main process exited, code=exited, status=1/FAILURE
>>>>
>>>>
>>>> I'm using the package provided by Arch Linux and can provide the flags the bind package was compiled with if those are relevant.
>>>>
>>>> Any advice would be greatly appreciated.
>>>
>>> Did you mean "dyndb" perhaps?
>>> Â  
>>>> Matt Pallissard
>>
>> Changing from dynamic-db to dyndb still causes named to fail.
>>
>> Using formatting similar to this;
>>
>> dyndb "domain.net" {
>> Â  library "ldap.so"
>> Â  arg... 
>> }
>>
>> Gives the following error;
>>
>> named[31641]: /etc/named.conf:23: expected quoted string near '{
>>
>> Most of the documentation I can find around this seems to use 'dynamic-db' in named.conf
> 
> Which would be for the unoffical extension.
> 
> Did you read the documentation that comes with BIND 9.11 for dyndb?
> 
> dyndb domain.net "ldap.so" {
> 	...
> };
> 
> Mark
>  
>> Matt Pallissard

That was it.  Thank you for your help


As for the documentation, I was reading the 'bind-dyndb-ldap' documentation.
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Identity_Management_Guide/bind-dyndb-ldap-config.html


I wish I'd have thought to grep through the bind docs as it's right there.

[matt bind-9.11.0]$ grep -r dyndb doc
doc/misc/options:        dyndb <string> <quoted_string> { <unspecified text> };

I should remember to RTFM next time.  


Matt Pallissard



More information about the bind-users mailing list