Re: 2.2.15 proxycache problem QUERY NOT CACHEABLE

[Howard Chu <hyc@symas.com>]

Andre Konopka wrote:

> Pierangelo Masarati wrote:
>
> > This error means LDAP_INSUFFICIENT_ACCESS; you should post
> > your entire slapd.conf (the database portion, at least).  Full logs 
> > (-d -1)
> > might help as well.
>
>
> Okay, here's the config file
>
>
> allow bind_v2
> database ldap
> lastmod off
> suffix "c=de"
> uri "ldap://x2se.presse-data.de:389/";
>
> overlay proxycache
> proxyCache bdb 1000000 1 1000 100
The main database (back-ldap in this case) must have a rootdn. The 
proxycache overlay uses the rootdn so that it will have full privileges 
over the cache database. Without a rootdn, nothing works.

> Yes, it seems to be a permission problem...

Yes.

> but, there are entries in /opt/pdldap/openldap/var/openldap-data
>
> rw-------    1 root     root         8192 Aug 25 12:55 __db.001
> -rw-------    1 root     root       270336 Aug 25 12:55 __db.002
> -rw-------    1 root     root        98304 Aug 25 12:55 __db.003
> -rw-------    1 root     root       368640 Aug 25 12:55 __db.004
> -rw-------    1 root     root        24576 Aug 25 12:55 __db.005
> -rw-------    1 root     root         8192 Aug 25 13:01 dn2id.bdb
> -rw-------    1 root     root        32768 Aug 25 13:01 id2entry.bdb
> -rw-------    1 root     root        42707 Aug 25 13:01 log.0000000001

It is a slapd ACL problem, not a filesystem permission problem. The 
above information is irrelevant.

--
 -- Howard Chu
 Chief Architect, Symas Corp.       Director, Highland Sun
 http://www.symas.com               http://highlandsun.com/hyc
 Symas: Premier OpenSource Development and Support