[Date Prev][Date Next] [Chronological] [Thread] [Top]

Import LDIF from old OpenLDAP Server



Dear list members,

My apologies in advance, if it´s not the right place to ask for.

I´m an absolute beginner in OpenLDAP and my first job is to relieve our
old OpenLDAP Servers installed onto SLES 10.x. and migrate it to new hard- and software.

Therefore I´ve installed and configured a test machine with Ubuntu 16.04 LTS to test the migration, import and later login and so on. OpenLDAP is version 2.4.42, installed from package manager.

Later OpenLDAP should be running as a "provider/comsumer" for replica. The provider on a new hardware, the consumer within a VM. Both OS should be Ubuntu 16.04 LTS.

After initial configuration slapcat show the following entries onto the test machine.
*****
dn: dc=ltm,dc=uni-erlangen,dc=de
objectClass: top
objectClass: dcObject
objectClass: organization
o: ltm
dc: ltm
structuralObjectClass: organization
entryUUID: bfca1276-1852-1037-80bd-373544139e33
creatorsName: cn=admin,dc=ltm,dc=uni-erlangen,dc=de
createTimestamp: 20170818111847Z
entryCSN: 20170818111847.816167Z#000000#000#000000
modifiersName: cn=admin,dc=ltm,dc=uni-erlangen,dc=de
modifyTimestamp: 20170818111847Z

dn: cn=admin,dc=ltm,dc=uni-erlangen,dc=de
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
userPassword:: e1NTSEF9YUJ2VGF1YVgxODJpNE1zaTVwNkRnVWR2NDN1TnFzZUI=
structuralObjectClass: organizationalRole
entryUUID: bfd1af40-1852-1037-80be-373544139e33
creatorsName: cn=admin,dc=ltm,dc=uni-erlangen,dc=de
createTimestamp: 20170818111847Z
entryCSN: 20170818111847.866104Z#000000#000#000000
modifiersName: cn=admin,dc=ltm,dc=uni-erlangen,dc=de
modifyTimestamp: 20170818111847Z
*****

First I´ve tried with a copy from the original LDAP-Server DB.ldif file from the old server to import, but it fails. Here´s an "extract" from a few lines of DB.LDIF"
*****
dn: o=ltm,dc=uni-erlangen,dc=de
o: ltm
objectClass: organization
structuralObjectClass: organization
entryUUID: c517ac96-315a-102c-8517-630622d96f14
creatorsName: cn=Administrator,o=ltm,dc=uni-erlangen,dc=de
modifiersName: cn=Administrator,o=ltm,dc=uni-erlangen,dc=de
createTimestamp: 20071127173437Z
modifyTimestamp: 20071127173437Z
entryCSN: 20071127173437Z#000000#00#000000
...
*****

After that I´ve created with ldapsearch created an save.ldif file to avoid those lines like creators and modifiers from the running LDAP-Server and tried to import into the new one but it also fails.

The error was Server is unwilling to perform (53)
    additional info: no global superior knowledge

Now I´m a little bit confused about import. So I tried to modify the new server entry like the old - my thougt was a conflict in the dn: o=ltm,dc=uni-erlangen,dc=de - but I´ve got no chance. Modifying the new entry onto the test machine says: " Strong(er) authentication required"

Could you please give me any hint? Or is there another way?

Any help would be greatly appreciated! If you need additional information, please let me know.

Thanks in advance!

--
Yours sincerely,
Christian Baensch