RE: Antw: Adding attributes to cn=config

["Borresen, John - 0442 - MITLL" <John.Borresen@ll.mit.edu>]

Thanks, I should've caught that.  Going too fast and not enough coffee.  

-----Original Message-----
From: Ulrich Windl [mailto:Ulrich.Windl@rz.uni-regensburg.de] 
Sent: Wednesday, January 22, 2014 3:02 AM
To: Borresen, John - 0442 - MITLL
Subject: Antw: Adding attributes to cn=config

>>> "Borresen, John - 0442 - MITLL" <John.Borresen@ll.mit.edu> schrieb 
>>> am
21.01.2014 um 17:38 in Nachricht
<201401211638.s0LGccwE074678@boole.openldap.org>:
> Ok,
> 
> Trying to add the following:
> 
> objectClass: olcGlobal  --> this is the objectClass on another server 
> that has SSL already set up.
> dn: cn=config
> changetype: add
> olcTLSCipherSuite: HIGH:MEDIUM+TLSv1+SSLv3
> olcTLSCertificateFile: /usr/local/openldap/etc/openldap/CA/cacert.pem
> olcTLSCertificateKeyFile: 
> /usr/local/openldap/etc/openldap/CA/private/cakey.pem
> adding new entry "cn=config"
> ldapmodify: Object class violation (65)
>         additional info: no objectClass attribute
> 
> I've read the various manpages that deal with ldif formats, 
> ldapmodify, ldapadd, etc and been googling too.
> 
> What am I missing?

You want to "modify" cn=config, not "add" it. You want to "add" atributes. I'm surprised that someone with a "mit.edu" adress has such primitive problems ;-)

Ulrich

> 
> Thanks in advance.
> 
> John D. Borresen (Dave)
> Linux/Unix Systems Administrator
> MIT  Lincoln Laboratory
> Surveillance Systems Group
> 244 Wood St
> Lexington, MA  02420
> Email: john.borresen@ll.mit.edu<mailto:john.borresen@ll.mit.edu>