RE: Adding Schemas

["Jason Gray" <jgray@bardelanimation.com>]

I did get the schemas to appear...now I'm faced with making Postfix (which
is one server) authenticate against my LDAP server (on another box).  I've
been able to configure the postfix main.cf file to bind to the LDAP server
but I'm still getting authentication errors:

pam_ldap: error trying to bind as user
"uid=jgray,cn=Users,ou=People,sambaDomainName=BARDELCA,dc=bardel,dc=ca"
(Invalid credentials)

I'm somewhat confused at to whether or not I need to be running cyrus and
sasl on the LDAP server for authentication since the mail server was
originally setup to use them.  I've read the LDAP_README in the Postfix
readme docs and there's nothing there that I haven't done yet.

The user jgray does exist in the LDAP and has a password etc.  I guess I
can't tell if the issue is with LDAP, Postfix, SASL or Cyrus or a
combination.  Any thoughts?

Cheers,

Jason

-----Original Message-----
From: owner-openldap-software@OpenLDAP.org
[mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Adam Williams
Sent: Tuesday, March 09, 2004 7:47 PM
To: LDAP
Subject: Re: Adding Schemas


> I'm running openldap 2.0.27 and SMB 3.0 on RH 9.0 to function as a Domain
> Controller.  I also have a mail server which is running LDAP, Cyrus,
Postfix
> and sasl (using PAM as mechanism) to authenticate mail users.  I want to
> have the mail server use the Domain Controller LDAP instead of having two
> separate database.  Is it possible to add schemas to the LDAP after the
> fact?
> IOW, I need to add these schemas:
> include         /etc/openldap/schema/rhems/inetmail.schema
> include         /etc/openldap/schema/rhems/rhems.schema
> include         /etc/openldap/acl/rhems.acl
> to the Domain Controller so that I can add specific mail objects to the
> user's record.  Is this possible?

Yes.

> I tried adding the schemas to the
> slapd.conf file, copying them over and restarting LDAP

Should have worked.