[Date Prev][Date Next] [Chronological] [Thread] [Top]

Need help setting up n-way + cn=config


I am in the process of testing a new n-way setup, I have come across
some problem's.

when trying to setup unique I keep getting undefined attribute error

dn: olcOverlay={2}unique,olcDatabase={1}hdb,cn=config                                                                                                                 
changetype: modify                                                                                                                                                    
add: olcunique_uri                                                                                                                                                    
olcunique_uri: ldap:///?uid?sub                                                                                                                                       
but it fails                                                                                                                                                          
ldap_modify: Undefined attribute type (17)                                                                                                                            
        additional info: olcunique_uri: AttributeDescription contains                                                                                                 
        inappropriate characters                                                                                                                                      

also while trying to setting olcaccess parameter I can't find any
information on how setup a ipv6 network

Currently I have                                                                                                                                                      
'to dn.sub="ou=SUDOers,dc=samad,dc=com,dc=au" '.                                                                                                                      
        'by dn.exact="cn=libnss-ldap,ou=Roles,dc=samad,dc=com,dc=au" read '.                                                                                          
        'by dn.exact="cn=libpam-ldap,ou=Roles,dc=samad,dc=com,dc=au" read '.                                                                                          
        'by peername.ip= read '.                                                                                                            
        'by peername.ip= read '.                                                                                                             
        'by peername.ip= read '.                                                                                                             
        'by peername.ip= read '.                                                                                                                             
        'by peername.ipv6=::1 read '.                                                                                                                                 
        'by peername.path=/var/run/slapd/ldapi read '.                                                                                                                
        'by * none ',                                                                                                                                                 
I have a ipv6 network 2002:3cf1:f856::/48 but I can't seem to put in                                                                                                  
        'by peername.ipv6=2002:3cf1:f856::%48 read '.                                                                                                                 
do I need to write out a complete mask                                                                                                                                
        'by peername.ipv6=2002:3cf1:f856::%<mask> read '.                                                                                                             
I am not sure what that mask would look like                                                                                                                          
65535.65535.65535. ?                                                                                                                                         


Attachment: signature.asc
Description: Digital signature