Re: Adding entries to cn=config

[Buchan Milne <bgmilne@staff.telkomsa.net>]

On Tuesday, 28 September 2010 08:51:24 Dieter Kluenter wrote:
> Am Tue, 28 Sep 2010 08:58:00 +0200
> 
> schrieb "Angel L. Mateo" <amateo@um.es>:
> > El 27/09/10 15:17, Buchan Milne escribió:
> > > On Monday, 27 September 2010 11:56:47 Angel L. Mateo wrote:

[...]

> > > The config database is for configuration, not for data (e.g. users).
> > 	
> > 	I know it. I just want to create a user for configuration and
> > 
> > automation (of configuration) purposes. I'm trying to configure slapd
> > from a configuration system like puppet, so I need a user for ldap
> > operations (instead of this I could configure slapd managing files
> > directly, but I prefer ldap commands). Because of I want to make
> > configuration previous to the creation of databases, I would like
> > that user to be directly in cn=config database.
> 
> ldapmodify
> dn: olcdatabase={0}cn=config,cn=config
> changetype: modify
> add: olcRootDN
> olcRootDN: cn=config
> -
> add: olcRootPW
> olcRootPW: secret
> -

Invalid solution to the original requirement (which has no solution):

On Monday, 27 September 2010 11:56:47 Angel L. Mateo wrote:
> Hello,
> 
> 	I'm migrating from an old openldap 2.3.30 to a 2.4.21 running in an
> ubuntu server, so I'm new with cn=config database.
> 
> 	The problem I have is that I want to create a user under cn=config, so
> I could configure the server without providing the password for
> cn=config (I want to restrict the IPs from that user could be used).


Regards,
Buchan