[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: syncrepl and structuralObjectClass operational attribute

To: openldap-technical@openldap.org
Subject: Re: syncrepl and structuralObjectClass operational attribute
From: Marvin Mundry <marvin.mundry@rrz.uni-hamburg.de>
Date: Thu, 22 Mar 2012 21:24:06 +0100
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=pqXQ5Tj2N7xiyVNMO2eidflapxd3GIUVUelDaZt/m4o=; b=YVmGqF021+W/nkglRaOKLZBAcc+QejvsfWg597PH83hLAqbymdYrnF6HOmX4TX2Tc7 99LXQmhRA+bBjGYF2j1uON6ovlAWgPX5yWI5EpQb5Fi6ByiB1mD0LsX08TbVsZ5v0jfV W+Sj/mvvl7DKS8mwxRDiSfzo/ZLTxBfw0e66r4wF8yEZxgMruIvZXlwL5e0XLufQ04UU OxkkUVGBaYq/RPPBBl7Ql4ztWe6fSksEKq5i3RV9kYzj16kH/ksCB6c53cU5S51yyzw+ DE7LPvYvWJJPriRtxn9BCeCDyd3+I24S9fW2DmQGmJ9dPMjgOAO836QudHIjDLp6mT9E tSCw==
In-reply-to: <4F6B64B4.50205@it-sudparis.eu>
References: <4F6B64B4.50205@it-sudparis.eu>

> Mar 22 17:51:20 ldapz2 slapd[24456]: entry failed schema check: no
> structuralObjectClass operational attribute

> could it be related to the fact that the binddn account cannot read all
> attributes from the master ?
sounds like the replication user is not allowed to read the
structuralObjectClass attribute of the object that's userPassword gets
modified.

on the provider try:
ldapsearch -D cn=replicationuser,[...] -w replicationuser-password -b
[...]dc=domain,dc=com cn=user-with-changed-password +

by appending the + symbol you request all structural attributes. if
structuralObjectClass is not returned try adapting your acls.

bests,
Marvin

Follow-Ups:
- Re: syncrepl and structuralObjectClass operational attribute
  - From: jehan procaccia <jehan.procaccia@it-sudparis.eu>

References:
- syncrepl and structuralObjectClass operational attribute
  - From: Jehan PROCACCIA <Jehan.Procaccia@it-sudparis.eu>

Prev by Date: RE: OPENLDAP & SSL -- FOR FAILOVER
Next by Date: Re: Root not allowed to login
Index(es):
- Chronological
- Thread