[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Adding rfc schema clashes

To: <openldap-technical@openldap.org>
Subject: RE: Adding rfc schema clashes
From: Stuart Cherrington <stuart_cherrington@hotmail.co.uk>
Date: Wed, 14 Jul 2010 14:33:54 +0000
Importance: Normal
In-reply-to: <201007131547.31149.bgmilne@staff.telkomsa.net>
References: <BAY119-W133B733CB6C6C697B3979A3B90@phx.gbl>, <BAY119-W113F85704161FC895CD293A3B90@phx.gbl>, <201007131547.31149.bgmilne@staff.telkomsa.net>

> From: bgmilne@staff.telkomsa.net
> To: openldap-technical@openldap.org
> Subject: Re: Adding rfc schema clashes
> Date: Tue, 13 Jul 2010 15:47:31 +0100
> CC: stuart_cherrington@hotmail.co.uk
>
> On Tuesday, 13 July 2010 09:53:39 Stuart Cherrington wrote:
> > Hi,
> >
> > Think I fixed this one myself, I've replaced the nis.schema with
> > rfc2307bis.schema as it contains everything and more that nis.schema does.
>
> But, not the same ... and you should check that all your clients support
> rfc2307bis (e.g., groupOfNames groups with DN-valued member attributes,
> instead of posixGroup-only groups with username-valued memberUid attributes).

Not sure how I check what Solaris clients need ion the LDAP server end, will troll through google. I 'was' using the nis.schema, but then found that I couldn't bind the ldap on my SOlaris clients to the openldap server as the nisDomainObject was a missing objecttype. When I found this in rfc2307bis I had to replace nis.schema with it and I found I couldn't use both.

Not sure if I'm 'allowed' to do this but my initial problem was copying a posixGroup, the posixGroup def in rfc2307bis.schema lists the objecttype as 'AUXILIARY' and no 'cn' is MAY/MUST optioned. so I added 'cn' to the MAY section and changed the objectclass to 'STRUCTURAL', can now now copy posixGroups without errors.

Please let me know if I'm breaking anything.

>
> [...]
>
> > Hi,
> >
> > Running OpenLDAP 2.4 on RHEL 5.
> >
> > In order for my SOlaris 10 clients to start using the OpenLDAP service I
> > need the objectclass 'nisDomainObject' to be declared. I found this
> > objecttype in the 'rfc2307bis.schema' file so I've added it into the
> > slapd.conf and now LDAP fails to restart with
> >
> > /usr/share/openldap2.4/schema/nis.schema: line 53 attributetype: Duplicate
> > attributeType: "1.3.6.1.1.1.1.2" slaptest2.4: bad configuration file!
>
> Your other alternative is to just copy the nisDomainObject and related
> attributes to a separate schema file.
>
> > I did a quick check the and "1.3.6.1.1.1.1.2" is declared in the nis.schema
> > for the gecos attributetype.
> >
> > Can I alter the number within the rfc schema?
>
> That wouldn't help ...
>
> Regards,
> Buchan

Get a free e-mail account with Hotmail. Sign-up now.

References:
- Adding rfc schema clashes
  - From: Stuart Cherrington <stuart_cherrington@hotmail.co.uk>
- RE: Adding rfc schema clashes
  - From: Stuart Cherrington <stuart_cherrington@hotmail.co.uk>
- Re: Adding rfc schema clashes
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: openldap 2.4.22 crash
Next by Date: Re: openldap 2.4.22 crash
Index(es):
- Chronological
- Thread