[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapd permits unknown object classes with "schemacheck on"

At 04:17 PM 8/21/00 -0400, Thomas J Pinkl wrote:
>While playing with the MigrationTools from padl.com, I noticed that 
>slapd in OpenLDAP 1.2.11 allows you to add entries of unknown objectClass 
>when "schemacheck on" is specified in slapd.conf.

This is the default behavior.  An unknown objectClass value is
treated as extensibleObject.  See archives of this list and/or
bugs list and/or Issue Tracking System for details (including how
to disable this default).

>For example, it allows the addition of this entry:
>    dn: cn=MAILER-DAEMON,ou=aliases,dc=domain,dc=com
>    rfc822MailMember: root
>    objectClass: top
>    objectClass: nisMailAlias
>even though "nisMailAlias" is not defined as an object class in any of 
>the schema configuration files.
>Is this the expected behavior?
>Thomas J. Pinkl                         738 Louis Drive
>Unix Systems Programmer                 Warminster, Pa 18974
>Health Business Systems, Inc.           (215) 442-9300 x9260