[Date Prev][Date Next] [Chronological] [Thread] [Top]

Migration of old LDAP / old schema to new release of openLDAP and new GOSA schema!

To: GONICUS site administration project <gosa@oss.gonicus.de>
Subject: Migration of old LDAP / old schema to new release of openLDAP and new GOSA schema!
From: rey sebastien <reyman64@gmail.com>
Date: Fri, 10 Feb 2012 18:42:56 +0100
Cc: Cajus Pollmeier <pollmeier@gonicus.de>, openldap-technical <openldap-technical@openldap.org>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=Ta9p95YUMDrLqYxXY+Bpe/MsbJWPX5hgPYMm2Ek295w=; b=kWaHeco2JxEYRGA4Jr/3KKObRW238iE09kionPaIZpF1hlyyYrejv3rWKfeLZBBVzp 1VbZlJoTeBhiugBydgIy/50FIY/9TpxVLyO79RgwIJU98w8mBM1KjP7xiwx2jsrlpuV4 kZYS9rPzztyS9sOL1zFCJrecu+b2NIzl4svDU=
In-reply-to: <201201200822.57894.pollmeier@gonicus.de>
References: <CACQya_bY+tyR_h9Z=Pt4K0p-RiKXF10UKLHwQR16ziT=9Z++2w@mail.gmail.com> <201201200822.57894.pollmeier@gonicus.de>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0) Gecko/20120129 Thunderbird/10.0

Hi,

here the step i begin to make a clean migration between ldap(s) withdifferent version of gosa schema :

a ) I export all my users from old ldap + old gosa 2.6.2 into a backupldif file backup.ldif,b) I create a new openLdap (last release version) on a server wich runwith all the new schema for gosa 2.7.1

c) I start with a new bdb which get the data from my backup.ldif :

database config
rootdn "cn=admin,cn=config"
rootpw {SSHA}...

database        bdb
suffix          "dc=parisgeo,dc=cnrs,dc=fr"
rootdn          "cn=admin,dc=parisgeo,dc=cnrs,dc=fr"
rootpw {SSHA}....

c ) I import the backup.ldif into the new ldap, no problem at this step !

d ) i install the new version of Gosa on apache2, and i configuregosa.conf to connect to this dn ="cn=admin,cn=config" with the goodadmin password.

At this step i'm not sure, but i think gosa want a specificadministrator dn, not THE config dn, can you certify me this point ?

If it's the case, the new LDAP doesn't have the correct ACL and i thinki need to import old ACL for specific administrors of Gosa. But i'm notsure, it is possible to use the cn=config access to use with gosa ?


Thansk for enlightements,
SR

Prev by Date: Simple bind error in CAS-Openldap authentication.
Next by Date: Re: GSSAPI (SASL) + LDAP
Index(es):
- Chronological
- Thread