[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Issue when injecting a new AttributeTypes in OpenLdap

Emmanuel Lécharny writes:
>On 4/11/11 3:21 PM, Hallvard B Furuseth wrote:
>> Emmanuel Lecharny writes:
>>> #!ERROR [LDAP: error code 21 - attributeTypes: value #0 invalid per syntax]
>> (...)
>> See the admin guide.  In OpenLDAP you add schema by modifying a schema
>> below cn=schema,cn=config, and you set 'olcAttributeTypes' rather than
>> 'attributeTypes'.
> Makes sense... Although the error message is extremely misleading :/

Yes, OpenLDAP could use an effort to improve error messages.

> Ok, get it. It would be cool (tm) that OpenLDAP accepts direct 
> modifications of the schema through LDAP requests.

Eh?  You can, that's why cn=config exists.  Just set up some DN to
have write access to it.  Normally a rootdn for database config.

It's just that you can't modify cn=subschema directly - then slapd
wouldn't know in which schema entry to store the attribute.  Look at
    ldapsearch ... -LLL -b cn=schema,cn=config -s one 1.1
which has one entry per schema file originally loaded into slapd.