[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Netscape D.S. -> OpenLDAP replication



Hi

Below you talk about attributes and objectClasses, but this is assuming
replication is working, that is, NDS knows how to replicate to OpenLDAP.
Does it? How does it see openldap, as another nds server? Or are you
talking about some sort of manual/scripted replication here?

On Fri, Aug 08, 2003 at 08:08:02AM -0500, supraexpress@globaleyes.net wrote:
> Every NSDS object which contains an ACI will require an ACI attribute to
> be added to the list of objectClasses in the target OpenLDAP object. You
> will probably have to create a locally defined ACI attribute in a local,
> auxiliary, objectClass, and then add that local objectClass to the list
> of objectClasses to each OpenLDAP object that will be created by the
> replication process. It has been a LONG time since I have dealt with
> this. OpenLDAPACI (or whatever) can't be used as NSDS doesn't know about
> it.
> 
> There is also a "copiedFrom" attribute that you will have to create as
> another local attribute in an auxiliary objectClass, that has to be
> present in the root object of every subtree, if I remember correctly.
> 
> Other than that, you will also have to replicate locally defined NSDS
> attributes and objectClasses into your OpenLDAP schemas, and possibly
> slapd.conf INDEX entries. You should then be able to perform NSDS ->
> OpenLDAP replications (though there may be other "gotchas" depending on
> the version of OpenLDAP that you will be using).