[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: import to openldap

To: T M <morisz@gmail.com>
Subject: Re: import to openldap
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Sun, 12 Feb 2006 10:14:25 -0800
Cc: openldap-software@OpenLDAP.org
In-reply-to: <8cc125710602120608p62ea22f6s7d84e52c94c45a85@mail.gmail.co m>
References: <17699596.91139423382859.JavaMail.root@zimbra> <8cc125710602091335l40be866cr34531a2a5e98e70f@mail.gmail.com> <20060209221601.GA3651@ivenue.com> <8cc125710602091526o7562d88bh6241b39176a672d@mail.gmail.com> <20060209233213.GC3651@ivenue.com> <8cc125710602100546n7c9b218ek24799f8e13214fd@mail.gmail.com> <20060210232049.GA13841@ivenue.com> <8cc125710602120608p62ea22f6s7d84e52c94c45a85@mail.gmail.com>

As I recently noted in another thread, the LDAP/X.500 data
models is not really specific to OpenLDAP Software.   In
all versions of OpenLDAP Software, the user was expected
to provide data that conformed to the LDAP/X.500 models.
In this case, the LDIF you provide don't represent a
compliant entry for addition to the directory service.
Any decent LDAP server should reject the LDIF.

It is likely that the program that generated the LDIF
never intended it to be imported directly into a
directory service.

I suggest you obtain a better understanding of the
LDAP/X.500 models, possibly by reading a good book on
the subject and, for any general LDAP/X.500 question
you might have, use a general LDAP/X.500 mailing list
to seek answers.  (See <http://www.openldap.org/lists/>http://www.openldap.org/lists/
for suggestions).

In attempting to load the LDIF data, you likely will got
a number of errors from slapd(8).  These are discussed in
the FAQ at <http://www.openldap.org/faq/index.cgi?file=53>http://www.openldap.org/faq/index.cgi?file=53.
Note that the errors and these FAQ answers generally
assume the reader has a basic understanding of the
LDAP/X.500 models.  If you don't, well, see above.

- Kurt



At 06:08 AM 2/12/2006, T M wrote:
>i see.
>well the ldif is what i get when exporting my current tbird
>addressbook.. so its kinda the default settings, didnt see anything i
>could alter pre-import
>so here is a one piece rip from the default ldif
>"""
>dn:: Y249TWFya292w6EgTGFkYSxtYWlsPWxhZGEubWFya292YUBjZW50cnVtLmN6
>objectclass: top
>objectclass: person
>objectclass: organizationalPerson
>objectclass: inetOrgPerson
>objectclass: mozillaAbPersonObsolete
>givenName: Lada
>sn:: TWFya292w6E=
>cn:: TWFya292w6EgTGFkYQ==
>mail: lada@centrum.cz
>modifytimestamp: 0Z
>homePhone: 777 889 111
>"""
>
>On 2/11/06, Todd Lyons <tlyons@ivenue.com> wrote:
>> Bringing this back on the mailing list...
>>
>> On Fri, Feb 10, 2006 at 02:46:50PM +0100, T M wrote:
>>
>> >hi,
>> >im sorry but im not a linux guru and i really dont understand what you mean by
>> >> Change what you're trying to add so that everything is under your rootdn
>> >> and it should start to work.
>> >
>> >could you please tell me in a more straightforward way what exactly
>> >should i do? like "where under rootdn". is that something i should
>> >write into the conf file, or some directory or.. ?
>>
>> Change the dn in your ldif file.
>>
>> >> >> >adding new entry "cn=Ryvolová Ivana,mail=xryvi01@vse.cz"
>> >> >> >ldap_add: Server is unwilling to perform (53)
>> >> >> >        additional info: no global superior knowledge
>> >>
>> >> So my comment in the last message is applicable to you.
>> >>
>> >> >> Just from seeing the admin that you're binding as with a base of
>> >> >> 'dc=ireas,dc=cz' makes me wonder why you aren't trying to add
>> >> >> 'cn=Ryvolová Ivana,mail=xryvi01@vse.cz,dc=ireas,dc=cz'.
>> >>
>> >> Change what you're trying to add so that everything is under your rootdn
>> >> and it should start to work.
>>
>> Being more explicit, you need to change:
>>   "cn=Ryvolová Ivana,mail=xryvi01@vse.cz"
>> to
>>   "cn=Ryvolová Ivana,mail=xryvi01@vse.cz,dc=ireas,dc=cz"
>>
>> There should be a 'dc=ireas,dc=cz' object as the base of the directory.
>> Then there needs to be an object inside of it named
>> 'mail=xryvi01@vse.cz,dc=ireas,dc=cz'.  Then finally, the object that you
>> are trying to create will be
>> "cn=Ryvolová Ivana,mail=xryvi01@vse.cz,dc=ireas,dc=cz".
>>
>> I do think that you're going about this in a slightly wrong manner.  I
>> think it should be:
>>   "cn=Ryvolová Ivana,dc=ireas,dc=cz"
>> and mail should be one of the attributes in the "cn=Ryvolová Ivana"
>> object.
>>
>> Show us the ldif you're trying to import.  That will clear up a lot of
>> things and give us something to make changes to in order to make it
>> clearer for you.
>> --
>> Regards...              Todd
>> we're off on the usual strange tangents.  next will be whether
>> it is ethical to walk in your neighbor's open house if they're
>> running ipv6:-).                                  --Randy Bush
>> Linux kernel 2.6.12-15mdksmp   2 users,  load average: 0.06, 0.06, 0.07
>>

References:
- Fwd: import to openldap
  - From: "Todd A. Lyons" <tlyons@ivenue.com>
- Re: import to openldap
  - From: T M <morisz@gmail.com>
- Re: import to openldap
  - From: Todd Lyons <tlyons@ivenue.com>
- Re: import to openldap
  - From: Todd Lyons <tlyons@ivenue.com>
- Re: import to openldap
  - From: Todd Lyons <tlyons@ivenue.com>
- Re: import to openldap
  - From: T M <morisz@gmail.com>

Prev by Date: Re: import to openldap
Next by Date: replication problem 2.0 -> 2.2
Index(es):
- Chronological
- Thread