[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How to enable 'pwdPolicySubentry' in ppolicy.schema

To: Alexey Shalin <a.shalin@ipc.kg>
Subject: Re: How to enable 'pwdPolicySubentry' in ppolicy.schema
From: Howard Chu <hyc@symas.com>
Date: Thu, 20 Jan 2011 19:35:46 -0800
Cc: openldap-technical@openldap.org
In-reply-to: <05EA8BD9F149744AA29116A75DE08A740B2C66@mail.domenipc.kg>
References: <05EA8BD9F149744AA29116A75DE08A740B2C66@mail.domenipc.kg>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:2.0b8pre) Gecko/20101024 Firefox/4.0b8pre SeaMonkey/2.1b2pre

Alexey Shalin wrote:

Hello,

How to enable  'pwdPolicySubentry' in ppolicy.schema, I added this into
ppolicy.schema


Never modify the schema files distributed with OpenLDAP.

attributetype ( 1.3.6.1.4.1.42.2.27.8.1.23

       NAME 'pwdPolicySubentry'

       DESC 'The pwdPolicy subentry in effect for this object'

       EQUALITY distinguishedNameMatch

       SYNTAX 1.3.6.1.4.1.1466.115.121.1.12

       SINGLE-VALUE

       USAGE directoryOperation )

But after that my slapd do not started.


Of course.

Schema files are only for defining user attributes. Operational attributesmust be implemented in code and cannot be defined from a schema config file.

This particular attribute is already implemented in the ppolicy overlay sothere is no need to define it again anyway.

should I upgrade openldap to the last ver ?


That would make no difference here, but it's always best to stay up to date.

--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

References:
- How to enable 'pwdPolicySubentry' in ppolicy.schema
  - From: "Alexey Shalin" <a.shalin@ipc.kg>

Prev by Date: How to enable 'pwdPolicySubentry' in ppolicy.schema
Next by Date: RE: How to enable 'pwdPolicySubentry' in ppolicy.schema
Index(es):
- Chronological
- Thread