[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: dynlist does not allow me to compare
Dear all,
if I configure the slapd.conf like this
overlay dyngroup
attrpair member memberURL
and maintain the group definitions as before
And I have declared a dynlist like this
dn: cn=administrativos,ou=grupos,dc=sisgap,dc=com
> > objectClass: groupOfURLs
> > cn: administrativos
> > memberURL:ldap:///ou=administrativos,ou=empleados,ou=EmpresaA,ou=empresas
> > ,dc=sgp,dc=com??sub memberURL:
> > ldap:///ou=administrativos,ou=empleados,ou=EmpresaB,ou=empresas,dc=sgp,dc
> > =com??sub
On 3/14/06, Quanah Gibson-Mount <quanah@stanford.edu> wrote:
>
>
> --On Tuesday, March ******** 14, 2006 6:46 PM +0100 Rosa Lago <rosa.lago@gmail.com>
> wrote:
>
> > Dear all,
> >
> > I have created a dynlist in my openladp server
> >
> > first I configured the dynlist overlay like this in the slapd.conf
> >
> > overlay dynlist
> > dynlist-attrset groupOfURLs memberURL member
> >
> > and then I have created several organizational units that holds the
> > users in the directory server
> >
> > ou=administrativos,ou=empleados,ou=EmpresaA,ou=empresas,dc=sgp,dc=com
> >
> > ou=administrativos,ou=empleados,ou=EmpresaB,ou=empresas,dc=sgp,dc=com
> >
> > and so on
> >
> > And I have declared a dynlist like this
> >
> > dn: cn=administrativos,ou=grupos,dc=sisgap,dc=com
> > objectClass: groupOfURLs
> > cn: administrativos
> > memberURL:ldap:///ou=administrativos,ou=empleados,ou=EmpresaA,ou=empresas
> > ,dc=sgp,dc=com??sub memberURL:
> > ldap:///ou=administrativos,ou=empleados,ou=EmpresaB,ou=empresas,dc=sgp,dc
> > =com??sub
> >
> > The problem is
> > if I do a search using an ldapsearch like this it shows all the members
> >
> ># /usr/local/bin/ldapsearch -x -b
> > "cn=administrativos,ou=grupos,dc=sgp,dc=com" -s sub "(objectclass=*)"
> > member
> >
> > it returns all the members without problems
> >
> ># LDAPv3
> ># base <cn=administrativos,ou=grupos,dc=sgp,dc=com> with scope subtree
> ># filter: (objectclass=*)
> ># requesting: member
> >#
> >
> ># administrativos, grupos, sgp.com
> > dn: cn=administrativos,ou=grupos,dc=sgp,dc=com
> > member:
> > ou=administrativos,ou=empleados,ou=EmpresaA,ou=empresas,dc=sgp,dc=com
> > member:
> > uid=rperez,ou=administrativos,ou=empleados,ou=EmpresaA,ou=empresas,dc=sgp
> > ,dc=com member:
> > ou=administrativos,ou=empleados,ou=EmpresaB,ou=empresas,dc=sgp,dc=com
> >
> ># search result
> > search: 2
> > result: 0 Success
> >
> ># numResponses: 2
> ># numEntries: 1
> >
> >
> > but if I do a ldapcompare like this it returns FALSE when the response
> > must be TRUE due to the search results
> >
> ># ldapcompare -x -D "cn=Manager,dc=sgp,dc=com" -W
> > "cn=administrativos,ou=grupos,dc=sgp,dc=com"
> > member:"uid=rperez,ou=administrativos,ou=empleados,ou=EmpresaA,ou=empresa
> > s,dc=sgp,dc=com"
> >
> > it returns false.
> >
> >
> > That is a very strange problem and If I do the compare operation from
> > a java program that I am developing it stays paused (hang like in an
> > infinity loop)
> >
> > Do somebody can help me?
>
> Use "dyngroup"?
>
> --Quanah
>
> --
> Quanah Gibson-Mount
> Principal Software Developer
> ITS/Shared Application Services
> Stanford University
> GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
>