[Date Prev][Date Next] [Chronological] [Thread] [Top]

Comparing slapcat output

To: openldap-software@OpenLDAP.org
Subject: Comparing slapcat output
From: Jan-Piet Mens <jpm@retail-sc.com>
Date: Tue, 28 Jun 2005 08:10:08 +0200
Content-disposition: inline
User-agent: Mutt/1.5.7i

My OpenLDAP 2.2.23 is rather quiescent at about 02:00 AM so
I do a `slapcat' on each slave to check whether the output
is identical to that of the master in order to check consistency.
 I notice that entries which have been modified by Heimdal Kerberos
over slapi differ for the modifiersName and creatorsName attribute
types:

| $ diff master.ldif slave.ldif
| < modifiersName: uidnumber=0+gidnumber=0,cn=peercred,cn=external,cn=auth
| ---
| > modifiersName: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
| 1257507c1257507
| < creatorsName: uidnumber=0+gidnumber=0,cn=peercred,cn=external,cn=auth
| ---
| > creatorsName: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth


The relevant portion of the ACL is:


| access to dn.subtree="ou=KerberosPrincipals,ou=Devices,dc=retail-sc,dc=com"
|        by peername.path="/var/run/slapd-master.sock"     write
|        by dn.exact="uidnumber=0+gidnumber=0,cn=peercred,cn=external,cn=auth" write
|        by * none

What is the reason for the differing order of the RDN of the
modifier/creator?

Thanks,
	-JP

Follow-Ups:
- Re: Comparing slapcat output
  - From: "Pierangelo Masarati" <ando@sys-net.it>
- Re: Comparing slapcat output
  - From: "Pierangelo Masarati" <ando@sys-net.it>

Prev by Date: Re: openldap23 w/ bdb43 entryCSN eq index prob
Next by Date: Re: Bind problems when use userPassword in clear text.
Index(es):
- Chronological
- Thread