[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Q: Co-existence of OpenLDAP and 389 Directory Server?
You won't necessarily get into trouble.
1. just because schema controls are not as strict does not
automatically mean that clients will enter non-compliant data
2. syncrepl schemachecking=off allows you to do what you want, in any case
Those are the facts. Leading newbies to behave according to how you
think they should behave is not objective.
On Thu, Aug 23, 2018 at 7:16 PM Michael Ströder <michael@stroeder.com> wrote:
>
> On 2018-08-20 12:54, Ulrich Windl wrote:
> > However I wonder if it's possible to integrate a 389DS (ns-slapd,
> > http://www.port389.org/) into an OpenLDAP multi-master configuration.
>
> Even if you get syncrepl working you will get into trouble because
> schema checking in 389-DS is not as strict as with OpenLDAP. Which means
> a client can write data to 389-DS which is rejected in OpenLDAP. IMO
> this lack of schema-checking is also one of the main reasons not to use
> 389-DS.
>
> Ciao, Michael.
>