[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Migrating from Netscape DS 3.1 to Openldap

To: <scarvill@marimba.com>
Subject: Re: Migrating from Netscape DS 3.1 to Openldap
From: "Lon Tierney" <ltierney@mykungfuisthebest.net>
Date: Mon, 2 Jun 2003 11:10:27 -0700 (PDT)
Cc: <openldap-software@OpenLDAP.org>
Importance: Normal
In-reply-to: <5144D71D958F9642A8A2EBAF2C0FB4386356D7@cobra.marimba.com>
References: <5144D71D958F9642A8A2EBAF2C0FB4386356D7@cobra.marimba.com>

Odds are that your schema is incorrect for what you exported from NS. I
would check to ensure that you have an "aci" attribute in your schema.
OpenLDAP doesn't set ACIs the same way as NS, so you can probably just
remve all references to "aci" attributes from your LDIF.

To make your life easier, I would suggest that you check to ensure that
all the attributes and objectclasses are in your current working schema.
If not, add them in as necessary.

-lon


> Greetings,
>
> I've been trying to import a Netscape Directory Server 3.1 ldif file
> into openldap 2.1.21 using this command:
>
> slapadd -v -l ldif_file
>
> I get this error:
> slapadd: could not parse entry (line=8)
>
> I've noticed there are some differences with this ldif file and the
> ldif format that is commonly recognized.
>
> Are there any utilities to convert a Netscape DS 3.1 ldif file to one
> that is recognized by openldap?
>
> Below are the contents of the first few lines of the ldif_file:
>
> o=Example.com
> objectclass=top
> objectclass=organization
> o=Example.com
> aci=(target="ldap:///o=Example.com";) (targetattr = "*")(version 3.0;
> acl "Allow self entry modification"; allow (write) userdn =
> "ldap:///self";;) aci=(target="ldap:///o=Example.com";) (targetattr !=
> "userPassword") (version 3.0; acl "Anonymous access"; allow (read,
> search, compare) userdn = "ldap:///anyone";;)
> aci=(target="ldap:///o=Example.com";) (targetattr = "*")(version 3.0;
> acl "Suitespot Adminstrators Group"; allow (all) groupdn =
> "ldap:///cn=Administrators,o=Example.com";;)
>
> cn=Administrators,o=Example.com
> objectclass=top
> objectclass=groupofuniquenames
> cn=Administrators
> uniquemember=uid=admin,o=Example.com
>
> uid=admin,o=Example.com
> objectclass=top
> objectclass=person
> objectclass=organizationalperson
> objectclass=inetorgperson
> cn=SuiteSpot Administrator
> sn=Administrator
> givenname=SuiteSpot
> uid=admin
> userpassword={SHA}+EKIfdhg9r423lAt+dsDepPPDjw4M=
>
> ou=Netscape Servers,o=Example.com
> objectclass=top
> objectclass=organizationalunit
> ou=Netscape Servers
>
> Any insight would helpful.
>
> TIA,
> Scott

References:
- Migrating from Netscape DS 3.1 to Openldap
  - From: Scott Carville <scarvill@marimba.com>

Prev by Date: Migrating from Netscape DS 3.1 to Openldap
Next by Date: Re: slapadd, 1 million entries, some NEW numbers
Index(es):
- Chronological
- Thread