[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: shadowLastChange missing after update

To: openldap-technical@openldap.org
Subject: Re: shadowLastChange missing after update
From: Maria McKinley <mariak@mariakathryn.net>
Date: Thu, 7 Mar 2013 15:38:06 -0800
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=oNwuyLtmrwZXxSmQwGQd3O6f7udPzxP9VMGMgCTLMKw=; b=HVzRrM8QMeOfZasG7PZSuNT59PiTv7Vcps2ihiXq4JzsakzPJ84md0dzC4AkJJytee DaZj95KkCtmCzShMaz80pftyt4siaqAxh2/4Nw/ep/L7rE+HENuNDRHWdy548wdBa7mF d/rrlE/wMqgTKTkCY0rm/oBlPLpOLmf/uhCLHwUbYeWHRkJGR+sBBS8M/KePJwpGNtCI Wf2vo+iRDvzDLLVCK7UgTCpHZvZdlkXV8hAdtjGIVhJc796wJPRklcVI1V/P4yD/ILny beaRXSKvXfSsfVJbjleORoXrxLVs9gZaEOzgERQjgZ7CIzNT4nUBX9m3X3TZ7UyfQUdJ 4kFg==
In-reply-to: <CAKPMSAiDOTJ+RxYat2ON+QLGtxMW3wHkfgxXEMtyjgoQC+VCsA@mail.gmail.com>
References: <CAKPMSAiDOTJ+RxYat2ON+QLGtxMW3wHkfgxXEMtyjgoQC+VCsA@mail.gmail.com>

On Wed, Mar 6, 2013 at 5:52 PM, Maria McKinley <mariak@mariakathryn.net> wrote:

Hi there,Â

I recently changed from the slapd.conf configuration to the slapd.d configuration. Everything seemed to go reasonably well, but for some reason the shadowLastChange attribute was missing from all of the people. When I try to add it back in, I get:Â

ldap_add: Object class violation (65) additional info: no objectClass attribute

but, I seem to have the schema and objectClasses for ShadowLastChange:

annette:~# ldapsearch -LLLQY EXTERNAL -H ldapi:/// -b cn=schema,cn=config "(objectClass=olcSchemaConfig)" dn
dn: cn=schema,cn=config

dn: cn={0}core,cn=schema,cn=config

dn: cn={1}cosine,cn=schema,cn=config

dn: cn={2}nis,cn=schema,cn=config

dn: cn={3}inetorgperson,cn=schema,cn=config

dn: cn={4}misc,cn=schema,cn=config

maria@mimi:~/sysadmin$ ldapsearch -xLLL "uid=jd"
dn: uid=jd,ou=people,dc=example,dc=com
objectClass: top
objectClass: posixAccount
objectClass: shadowAccount

objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: inetLocalMailRecipient
cn: Jochen Ditterich
shadowMax: 365
gidNumber: 100

uid: jd
homeDirectory: /home/jd
mailRoutingAddress: jd@example.com
uidNumber: 1025
sn: Ditterich
shadowWarning: 7

mailLocalAddress: jd

mail: jd@example.com
loginShell: /bin/bash

Anyone have any idea what might be going on? What am I missing?

thanks,

maria

So, I got past that error message (had an error in my change file), but now things are even stranger. When I got it right, I got the following message:

add shadowLastChange:

Â Â Â Â 15771

modifying entry "uid=jd,ou=people,dc=example,dc=com"

ldap_modify: Constraint violation (19)

Â Â Â Â additional info: attribute 'shadowLastChange' cannot have multiple values

That's strange. So, maybe it thinks it already has that attribute. let's see what happens if we try to modify it instead of add it:

replace shadowLastChange:

Â Â Â Â 15771

modifying entry "uid=jd,ou=people,dc=example,dc=com"

modify complete

Huh, well that seemed to have worked. Let's see what the value is now.

annette:~# ldapsearch -x "uid=jd" shadowLastChange

# extended LDIF

#

# LDAPv3

# base <dc=example,dc=com> (default) with scope subtree

# filter: uid=jd

# requesting: shadowLastChangeÂ

#

# jd, people, example.com

dn: uid=jd,ou=people,dc=example,dc=com

# search result

search: 2

result: 0 Success

# numResponses: 2

# numEntries: 1

Um, so where is it? Help!

thanks,

maria

References:
- shadowLastChange missing after update
  - From: Maria McKinley <mariak@mariakathryn.net>

Prev by Date: shadowLastChange missing after update
Next by Date: How to build OpenLDAP against specific OpenSSL install?
Index(es):
- Chronological
- Thread