[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: [openldap-technical] OpenLDAP custom schema [dummy question]

To: Alexandru Ocheana <arhanghel@info.uaic.ro>, openldap-technical@openldap.org
Subject: Re: [openldap-technical] OpenLDAP custom schema [dummy question]
From: Michael Ströder <michael@stroeder.com>
Date: Sat, 1 Apr 2017 21:28:51 +0200
In-reply-to: <a764d8a4-3601-5dff-ad58-728012816af8@info.uaic.ro>
Openpgp: id=43C8730E84A20E560722806C07DC7AE36A8BC938
References: <a764d8a4-3601-5dff-ad58-728012816af8@info.uaic.ro>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:49.0) Gecko/20100101 SeaMonkey/2.46

Alexandru Ocheana wrote:
> objectclass (
>        1.3.6.1.4.1.49565.1.2.1
>        NAME 'infoVCard'
>        DESC 'Extra Information Card'
>        AUXILIARY )
         ^^^^^^^^^
> dn: uid=alex,ou=People,dc=info,dc=uaic,dc=ro
> objectClass: inetOrgPerson
> objectClass: posixAccount
> objectClass: shadowAccount
> cn: Alexandru
> sn: Ocheana
> userPassword: {SSHA}BBxUpzvO93HlFEFPSkexvXA7G06UBYO4
> loginShell: /bin/bash
> uidNumber: 2000
> gidNumber: 2000
> homeDirectory: /home/alex
> 
> ## -------------------------
> ## HERE I BELIEVE IS AN ERROR BUT WHICH IS THE CORRECT WAY TO ADD IT?
> ## THIS PART IS TO ADD DATA TO THAT NEW SCHEMA
> ## -------------------------
> dn: uid=alex,ou=People,dc=info,dc=uaic,dc=ro
> objectClass: infoVCard
> cnp: myCNP
> emailContact: otheremail@gmail.com
> [..]
> adding new entry "uid=alex,ou=People,dc=info,dc=uaic,dc=ro"
> ldap_add: Object class violation (65)
>     additional info: no structural object class provided

The error message is pretty clear. Your "second" entry record does not have any
STRUCTURAL object class.

You're defining two LDIF entry records with same DN which represent two distinct entries.

You either want to simple merge both to one entry record or learn how LDIF *change*
records are defined (see RFC 2849).

Combined single entry record (to be used with ldapadd tool):

-------------------------------------------------
dn: uid=alex,ou=People,dc=info,dc=uaic,dc=ro
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: shadowAccount
objectClass: infoVCard
cn: Alexandru
sn: Ocheana
userPassword: {SSHA}BBxUpzvO93HlFEFPSkexvXA7G06UBYO4
loginShell: /bin/bash
uidNumber: 2000
gidNumber: 2000
homeDirectory: /home/alex
cnp: myCNP
emailContact: otheremail@gmail.com

-------------------------------------------------

Or two separate change records (add and modify) for one add operation and a subsequent
modify operation (to be used with ldapmodify tool):

-------------------------------------------------
dn: uid=alex,ou=People,dc=info,dc=uaic,dc=ro
changetype: add
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: shadowAccount
cn: Alexandru
sn: Ocheana
userPassword: {SSHA}BBxUpzvO93HlFEFPSkexvXA7G06UBYO4
loginShell: /bin/bash
uidNumber: 2000
gidNumber: 2000
homeDirectory: /home/alex

dn: uid=alex,ou=People,dc=info,dc=uaic,dc=ro
changetype: modify
add: objectClass
objectClass: infoVCard
-
add: cnp
cnp: myCNP
-
add: emailContact
emailContact: otheremail@gmail.com
-

-------------------------------------------------

But really: Look at RFC 2849 to understand the details within the example above!

Ciao, Michael.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

References:
- [openldap-technical] OpenLDAP custom schema [dummy question]
  - From: Alexandru Ocheana <arhanghel@info.uaic.ro>

Prev by Date: Re: OpenLDAP Tutorial on YouTube Channel
Next by Date: No olcRootPW in olcDatabase=\{0\}config.ldif
Index(es):
- Chronological
- Thread