[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: a few issues



>> > the DN in gq is
>> > "cn=admin,dc=example,dc=com"
>>
>> The DN looks fine; however, you must be sure that the attributeTypes you
>> use in the DN are known to the server.  "cn" is builtin, but "dc" is
>> not;
>> are you including the appropriate schema files?  From your early posting
>> it appears that you're including core.schema; I wonder if there's any
>> typo
>> or you typed any non-printing char in gq.  Can you check?
>>
> I checked the "dc" and it is present in core.schema line 505
> BTW I am including all schema's found in my system.
>
> I checked the GQ and I did not see a typing mistake

In this case, I suggest you look at slapd's logs starting from level 256
to see what DN gets to it at bind.  The DN you're indicating above should
not return that result for a failed bind.

>> > NOTE: rat is my machine name ,I am using Debian/Sarge
>>
>> what does "Debian/Sarge" mean in terms of OpenLDAP version?
>
> it means   slapd 2.1.30

That's a pretty old release; I suggest you upgrade as soon as possible.

>>
>> > the contents of file /usr/share/doc/libnss-ldap/examples/groups.ldif
>> is
>> > presented later.
>> > -----------------------------------------------------
>> > the result for the ldapadd is
>> >
>> > #adding new entry "ou=People,dc=example,dc=com"
>> > #ldapadd:updatefailed ou= People,dc=example,dc=com
>> > #ldap-add:no such object (32)
>>
>> Apparently you cannot add "ou=People,dc=example,dc=com"; are you sure
>> the
>> entry "dc=example,dc=com" (i.e. the "suffix" of your database) is
>> already
>> in?
>>
> sorry ,but what you mean of "is already in" and how to check if it's in or
> not
> and how to make it in  :-)
>
> if you meant that the line        suffix  "dc=example,dc=com"
> is present in the slapd.conf
> the answer is yes.

No, I mean the entry.  You cannot add "ou=People,dc=example,dc=com" if
"dc=example,dc=com" has not been loaded yet.  I suggest you read at least
the quick start guide <http://www.openldap.org/doc/admin/quickstart.html>,
and possibly the entire admin guide <http://www.openldap.org/doc/admin/>,
and carefully follow the examples indicated there to gain confidence with
OpenLDAP software.  Note that all the above docs refer to OpenLDAP 2.2,
but at least the quick start stuff is generic enough to apply to 2.1 as
well.

p.

-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it


    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497