[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#4192) cn=config rootdn issues




--On Tuesday, November 22, 2005 12:01 AM -0800 Howard Chu <hyc@symas.com> 
wrote:

>> I'd really prefer a way to replicate to cn=config using GSSAPI.  I
>> imagine this may take some additional parameters? Some way to create an
>> identity in cn=config for the rootDN?  Or to allow entries from naming
>> contexts to have permissions into cn=config (like I'd really like my
>> ldapadmin group to be able to read the cn=config DB on all the slaves,
>> too).
>>
>
> No, this has nothing to do with naming contexts. The DN you specified
> caused a syntax error in the normalizer. This happens because it was
> parsing the root entry cn=config, which occurs before user-specified
> schema are loaded. The odd thing is that there should not be any rootdn
> attribute in the cn=config entry. The configuration for the config
> database resides under "olcDatabase={0}config,cn=config" and that's where
> the rootdn belongs. Did you create this config.ldif manually?

No, I used slaptest -F to create the config.ldif file...


--Quanah


--
Quanah Gibson-Mount
Product Engineer
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>