[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: new attribute

To: Alexander Schwarz <netblack@gmx.de>
Subject: Re: new attribute
From: Dan White <dwhite@cafedemocracy.org>
Date: Fri, 16 Mar 2018 10:30:55 -0500
Cc: openldap-technical@openldap.org
Content-disposition: inline
In-reply-to: <000801d3bac0$203a5fa0$60af1ee0$@de>
References: <000801d3bac0$203a5fa0$60af1ee0$@de>
User-agent: Mutt/1.9.2 (2017-12-15)

On 03/13/18 12:40 +0100, Alexander Schwarz wrote:

I tried to create a new objectclass and a new attribute to develop scripts
to use against an ActiveDirectory.

objectlass=user
attribute=sAMAccountName

attributetype ( 1.2.840.113556.1.4.221
      NAME 'sAMAccountName'
      EQUALITY caseIgnoreMatch
      SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
      SINGLE-VALUE )

objectclass ( 1.2.840.113556.1.5.9
       NAME 'user'
       DESC 'a user'
       SUP inetOrgPerson STRUCTURAL
       MUST ( cn )
       MAY ( sAMAccountName ) )

This is included in slapd.conf:
include         ./schema/test.schema

modify.ldif:
dn: cn=test test,ou=Benutzer,ou=Netzwerk,dc=network,dc=de
changetype: modify
add: sAMAccountName
sAMAccountName: test

I used the ldapmodify tool:
ldapmodify -a -x -D "cn=admin,dc=network,dc=de" -w passwd -H ldap:// -f
d:\modify.ldif

Eintrag cn=test test,ou=Benutzer,ou=Netzwerk,dc=network,dc=de wird geändert
ldap_modify: Objektklassenverletzung
ldap_modify: Zusätzliche Info: attribute 'sAMAccountName' not allowed


Have you added the 'user' object class to the 'cn=test test' entry?

--
Dan White

References:
- new attribute
  - From: "Alexander Schwarz" <netblack@gmx.de>

Prev by Date: Re: LMDB random writes really slow for large data
Next by Date: Re: new attribute
Index(es):
- Chronological
- Thread