Scott Koch wrote:
> We have seen 15 or so instances of this issue and in all cases the
> last LDAP operations follow the same pattern where there is an
> ABANDON and UNBIND, then there is a SRCH operation. See log output
> below of full connection for the client that performs the last
> operation.
Of course slapd should not crash but...
> <http://ldap1.example.com> slapd[26514]: conn=873638 op=2 SRCH
> base="dc=example,dc=com" scope=2 deref=0
> filter="(&(?objectClass=sudoRole)(|(!(?sudoHost=*))(?sudoHost=ALL)(?sudoHost=node1713.example.com
^ ^ ^
...the question mark before 'sudoHost' indicates that the sudo-ldap
schema is missing on this particular slapd instance (specifically
attribute type 'sudoHost' unknown).
In former times I've also experienced a provider crashing in case the
consumer did not have the same schema yet.
Ciao, Michael.
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature