[Date Prev][Date Next] [Chronological] [Thread] [Top]

Adding new schema file, slaptest says "AttributeType inappropriate matching rule..."

To: openldap-software@OpenLDAP.org
Subject: Adding new schema file, slaptest says "AttributeType inappropriate matching rule..."
From: Kimmo Koivisto <kimmo.koivisto@surfeu.fi>
Date: Mon, 12 Dec 2005 23:26:06 +0200
Content-disposition: inline
User-agent: KMail/1.9

Hello

I have openldap 2.2.29/Fedora Core 4 and I have tried to add custom schema to 
it, but I have problem. Probably easy one, but I can't just figure out howto 
solve this.

I'm trying to add Mobile IP schema, I have copied schema 
to /etc/openldap/schema/mip.schema and added the include directive to the 
slapd.conf. When I run slaptest, I get:

# slaptest
/etc/openldap/schema/mip.schema: line 6: AttributeType inappropriate matching 
rule: "caseIgnoreMatch"
slaptest: bad configuration file!

Any ideas, should I get eyeglasses or better keyboard :)

Regards
Kimmo Koivisto

<mip.schema>
attributetype ( 1.3.6.1.4.1.4623.2.1.1
        NAME 'NAI'
        DESC 'RFC2486 Network Access Identifier'
        EQUALITY caseIgnoreMatch
        SUBSTR caseIgnoreSubstringsMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{72} )

attributetype ( 1.3.6.1.4.1.4623.2.1.2
        NAME 'mipKey'
        DESC 'Mobile IP shared secret'
        EQUALITY octetStringMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{16} )

attributetype ( 1.3.6.1.4.1.4623.2.1.30
        NAME 'mipAuthorizedIpAddress'
        DESC 'IP prefix as a dotted decimal and optionally subnet mask 
length , eg. 192.168.1.1/24, omitting leading zeros. Address authorized to 
use.'
        EQUALITY caseIgnoreIA5Match
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{18} )

attributetype ( 1.3.6.1.4.1.4623.2.1.31
        NAME 'mipNotValidBefore'
        DESC 'Date after which a device is authorized for Mobile IP servies. 
The date must be of the format yyyymmddhhmmZ (Generalized Time)'
        EQUALITY generalizedTimeMatch
        ORDERING generalizedTimeOrderingMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
        SINGLE-VALUE )

attributetype ( 1.3.6.1.4.1.4623.2.1.32
        NAME 'mipNotValidAfter'
        DESC 'Date before which a device is authorized for Mobile IP servies. 
The date must be of the format yyyymmddhhmmZ (Generalized Time)'
        EQUALITY generalizedTimeMatch
        ORDERING generalizedTimeOrderingMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
        SINGLE-VALUE )

attributetype ( 1.3.6.1.4.1.4623.2.1.34
        NAME 'mipSPI'
        DESC 'Mobile IP Security Parameter Index'
        EQUALITY integerMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
        SINGLE-VALUE )

attributetype ( 1.3.6.1.4.1.4623.2.1.35
        NAME 'mipAuthMethod'
        DESC 'Mobile IP authentication method (MAC algorithm)'
        EQUALITY caseIgnoreMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
        SINGLE-VALUE )

objectclass ( 1.3.6.1.4.1.4623.2.3.1
        NAME 'mipDevice'
        DESC 'Mobile IP device'
        SUP 'top'
        AUXILIARY
        MAY ( NAI $ mipSPI $ mipAuthMethod $ mipKey $ mipAuthorizedIPAddress 
$mipNotValidBefore $ mipNotValidAfter) )
</mip.schema>

Follow-Ups:
- Re: Adding new schema file, slaptest says "AttributeType inappropriate matching rule..."
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: Adding new schema file, slaptest says "AttributeType inappropriate matching rule..."
  - From: Pierangelo Masarati <ando@sys-net.it>

Prev by Date: Re: master ldap database is not getting populated
Next by Date: ldapsearches from remote host fail
Index(es):
- Chronological
- Thread