[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Rép. : Re: Overlay Chain



Hi,
 
I try to chain two openLdap directories ands I have some problem
 
I try to do:
 
        Master directory
       |
       |-Service1
            |-uid=1
       |-service2
            |-uid=2
       |
       |-Secondary Directory
           |-referral link 
                   |-service3 
                        |-uid=3 
                   |-Service4
                        |-uid=4
     
My config:
 
overlay         chain
chain-uri       ldaps://Ip:636/??sub
chain-idassert-bind     bindmethod=simple
                        
binddn="cn=Manager,o=Managers,dc=monAnnauire2,dc=fr"
                        credentials=secret
                        mode=self

My referral link:
dn: o=ldap,o=NDS,dc=monAnnuaire2,dc=fr
objectClass: referral
objectClass: extensibleObject
o: ldap
ref: ldaps://IP:636/dc=monAnnuaire2,dc=fr

So, openLdap start without errors
 
then I go on ldapBrowser and see something like this:
 
        Master directory
       |
       |-Service1
       |-service2
       |
       |-Secondary Directory
              |-ldap://Ip:636/o=service3,dc=monAnnuaire3,dc=fr
              |-ldap://Ip:636/o=service4,dc=monAnnuaire4,dc=fr


 
now, I want to deploy for exemple the subtree
ldap://Ip:636/o=service3,dc=monAnnuaire3,dc=fr, I' m not able
 
i have the following error:
 
My log:
 
<<< dnPrettyNormal:
<o=groupes,dc=monAnnuaire,dc=fr,o=NDS,dc=monAnnuaire,dc=fr>,
<o=groupes,dc=monAnnuaire,dc=fr,o=nds,dc=monAnnuaire,dc=fr>
ber_scanf fmt (m) ber:
ber_scanf fmt ({M}}) ber:
==> limits_get: conn=8 op=1
dn="cn=ldapappli1,o=administrateurs,dc=monAnnuaire,dc=fr"
=> bdb_search
bdb_dn2entry("o=groupes,dc=monAnnuaire,dc=fr,o=nds,dc=monAnnuaire,dc=fr")
=> bdb_dn2id("dc=fr,o=nds,dc=monAnnuaire,dc=fr")
<= bdb_dn2id: get failed: DB_NOTFOUND: No matching key/data pair found
(-30990)
 
I don't understand.
 
thx

>>> "Pierangelo Masarati" <ando@sys-net.it> 01/12 1:06  >>>
1) Go back to my previous message;
2) follow the steps indicated in it;
3) provide the requested information;
4.a) don't expect people can blindly guess what's going wrong in your
system when you don't provide anything that can help them
4.b) (and please do not trust those that do blindly guess and yet
provide
advice).

p.

> now I have:
>
> a referral link like this:
>
> dn: o=NDS,dc=eDirectory,dc=fr
> objectClass: referral
> objectClass: extensibleObject
> o: NDS
> ref: ldaps://Ip:636/ou=users,o=eDirectory
>
> and on slapd.conf this
>
> .....
>
> overlay         chain
> chain-uri       ldaps://Ip:636/
> chain-idassert-bind     bindmethod=simple
>                        
binddn="cn=ldapappli1,ou=applis,o=eDirectory"
>                         credentials=password
>                         mode=self
> ......
>
> then I can see on ldap Browser a subtree like : ou=users
>
> When I want to see the ou subtree I must re entrer a login and
> password, so I don't understand what it's wong
>
> Nota:
> I can bind all the directories




Ing. Pierangelo Masarati
Responsabile Open Solution
OpenLDAP Core Team

SysNet s.n.c.
Via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it 
------------------------------------------
Office:   +39.02.23998309          
Mobile:   +39.333.4963172
Email:    pierangelo.masarati@sys-net.it 
------------------------------------------