Re: Samba, Openldap and ppolicy

["Dieter Kluenter" <dieter@dkluenter.de>]

smainklh@free.fr writes:

> Hi Dieter,
>
> I did a "slaptest -f $configfile -F $path" command, here are the results :
>
> /etc/ldap/slapd.d/cn=config/cn\=module\{0\}.ldif
> ----
> ...
> olcModuleLoad: {0}back_bdb
> olcModuleLoad: {1}ppolicy.la
> olcModuleLoad: {2}smbk5pwd.la
> ...
>
> /etc/ldap/slapd.d/cn=config/olcDatabase\=\{1\}bdb/olcOverlay\=\{2\}smbk5pwd.ldif
> ---
> dn: olcOverlay={2}smbk5pwd
> objectClass: olcOverlayConfig
> objectClass: olcSmbK5PwdConfig
> olcOverlay: {2}smbk5pwd
> olcSmbK5PwdEnable: samba
> olcSmbK5PwdMustChange: 0
> olcSmbK5PwdCanChange: 0
> structuralObjectClass: olcSmbK5PwdConfig
> entryUUID: 4fffa030-4543-102f-8b00-5f29b421ba43
> creatorsName: cn=config
> createTimestamp: 20100826095158Z
> entryCSN: 20100826095158.762397Z#000000#000#000000
> modifiersName: cn=config
> modifyTimestamp: 20100826095158Z
>
> I still have the following errors :
> smbk5pwd: unable to find "krb5KDCEntry" objectClass.
> Aug 26 11:52:03 deathnote2 slapd[13165]: config error processing olcOverlay={2}smbk5pwd,olcDatabase={1}bdb,cn=config: <olcSmbK5PwdEnable> handler exited with 1
> Aug 26 11:52:03 deathnote2 slapd[13165]: slapd stopped.
>
> I thought that if i specify "olcSmbK5PwdEnable" parameter, it doesn't look for the krb5KDCEntry attribute...

The krb5KDCentry objectClass is defined in smbK5pwd.c.
If the module is properly loaded, this objectclass should be
present. Are you sure that the module has been loaded at all?

-Dieter

-- 
Dieter Klünter | Systemberatung
sip: 7770535@sipgate.de 
http://www.dpunkt.de/buecher/2104.html
GPG Key ID:8EF7B6C6