[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problems and Difficulties

Quoting dclement <dclement@mines.edu>:

> dn: o=penguin206.tcs.tulane.edu
> o: penguin206.tcs.tulane.edu
> objectclass: organization
> objectclass: dcObject
> dn: cn=Manager, o=penguin206.tcs.tulane.edu
> cn: Manager
> sn: Manager
> objectclass: person

If I read the file '/etc/openldap/slapd.oc.conf' (Debian GNU/Linux)
and check the objectclass 'dcObject' it requires 'dc'...

Maybe change the dn above to 'dc=penguin206,dc=tcs,dc=tulane,dc=edu'
and add the leading dc objects will work?

I'm not shure, but I think it's not recomended (?) to use

If starting with a base (ie empty) db, use this ldif and add it
with ldif2ldbm...

----- s n i p -----
dn: dc=edu
dc: edu
objectclass: top
objectclass: domain

dn: dc=tulane,dc=edu
dc: tulane
objectclass: top
objectclass: domain

dn: dc=tcs,dc=tulane,dc=edu
dc: tcs
objectclass: top
objectclass: domain

dn: dc=penguin206,dc=tcs,dc=tulane,dc=edu
dc: penguin206
objectclass: top
objectclass: domain

dn: cn=Manager,dc=penguin206,dc=tcs,dc=tulane,dc=edu
cn: Manager
objectclass: top
userPassword: {crypt}SomeCryptedPassword
----- s n i p -----

then add the ACL

access to *
        by dn="cn=Manager,dc=penguin206,dc=tcs,dc=tulane,dc=edu" write

to your slapd.conf.

> Tulane University

Why not use the organisation system instead?

        cn=Manager,ou=People,o=Tulane University,c=US

or wherever this is located :)