[Date Prev][Date Next] [Chronological] [Thread] [Top]

slapd permits unknown object classes with "schemacheck on"

While playing with the MigrationTools from padl.com, I noticed that 
slapd in OpenLDAP 1.2.11 allows you to add entries of unknown objectClass 
when "schemacheck on" is specified in slapd.conf.

For example, it allows the addition of this entry:

    dn: cn=MAILER-DAEMON,ou=aliases,dc=domain,dc=com
    rfc822MailMember: root
    objectClass: top
    objectClass: nisMailAlias

even though "nisMailAlias" is not defined as an object class in any of 
the schema configuration files.

Is this the expected behavior?

Thomas J. Pinkl                         738 Louis Drive
Unix Systems Programmer                 Warminster, Pa 18974
Health Business Systems, Inc.           (215) 442-9300 x9260