[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: eduOrg schema and OpenLDAP
--On Monday, February 14, 2005 10:16 AM -0500 "Matthew J. Smith"
<matt.smith@uconn.edu> wrote:
Does anyone use the eduCause schema for the eduOrg objectclass (and
attributes) under OpenLDAP? Including the schema in OpenLDAP 2.2.23, I
get the following errors (repeated for each attribute):
/etc/openldap/schema/eduorg.schema: line 5: AttributeType inappropriate
matching rule: "caseExactIA5Match"
The objectclass and attributetypes are defined here:
http://www.educause.edu/Elements/Attachments/netatedu/pki/eduperson/inter
net2-mace-dir-eduOrg-200210.htm
I believe the conflict lies in the use of "SYNTAX
1.3.6.1.4.1.1466.115.121.1.15" (DirectoryString ?) with "EQUALITY
caseExactIA5Match". Should OpenLDAP allow this matching rule for this
syntax, or is the schema definition broken?
Any insight is greatly appreciated. Thank you,
Have you looked through the schema's provided with OpenLDAP?
A quick gander shows:
attributetype ( 1.3.6.1.1.1.1.3 NAME 'homeDirectory'
DESC 'The absolute path to the home directory'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
If you then lookup that syntax, say at:
<http://www.ldaps.com/?server_id=0&view=syntaxes>
You'll see that it is for IA5 string.
1.3.6.1.4.1.1466.115.121.1.26 IA5 String
As you noted,
1.3.6.1.4.1.1466.115.121.1.15 Directory String
and if you look at the OpenLDAP provided schema's, you'll see that requires
EQUALITY caseIgnoreMatch
--Quanah
--
Quanah Gibson-Mount
Principal Software Developer
ITSS/Shared Services
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
"These censorship operations against schools and libraries are stronger
than ever in the present religio-political climate. They often focus on
fantasy and sf books, which foster that deadly enemy to bigotry and blind
faith, the imagination." -- Ursula K. Le Guin