[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Change OID of existing custom Attribute
- To: openldap-technical@openldap.org
- Subject: Re: Change OID of existing custom Attribute
- From: Tobias Hachmer <tobias@hachmer.de>
- Date: Thu, 26 Sep 2019 10:19:51 +0200
- Autocrypt: addr=tobias@hachmer.de; prefer-encrypt=mutual; keydata= mQINBFMUzvQBEADH8N41ct1nc/cKsd8q6mISClYLUVnMYM1GrzN1wD2pAJoPQ+Jeq22q1bIP CUxEEGpkyAJJ5a0lLBZcHwOXa1Tf/UCbOosx5vGoFuCwcIvbu+97Y6naodxp3GfUAku58DRm zThskIefZtm7uNGi363mUsLt9ctZskmhAozR98cKvt3ot7NGAnFEgcOmnpKbIzomrCjToP5V eUX9H2TvEtU72PL7K8KhHjoJrhc3nCaB/zXn11wOLJey7+6UgLfYlHtA+qkJaxv2xJtTD9tE fGL6zY4GIFNkTNryEG/x0KzaBplmh/PShGH7iLjbz4GRWqpHCOKPwI54C5PmqaLIxMFQBEIh TS0LYMW+bH/TB5IUWG5eZaGtWXo+JUjoCLM1n60r5eSGvh4UCabLJf8CKbWyVFNGU8vzCvfK V+/hll923TmmiWoJ4OZg2sZWyA6Yxn5GmyoxO2YkgysQtwINMdVGNuAhNVRKE1MhlvRBAGoV jTDlC4OnlALWarUYZhVWpRvFjFLjgkUovy3rKmnWIGOMAhy8zVi7PKFIZXmCrGDRRuqkKfx3 X6+ibzKfUYULQkHca2lFz1Q6thxZpzlWnpoSZkvhTQWwrR8QBTr+taETa6nESuc/wsuZiN5U bb4TPwBjuYiwZcyfAaR9N+Z/155wTBI+UNarovqx/Fz+g24hDQARAQABtCJUb2JpYXMgSGFj aG1lciA8dG9iaWFzQGhhY2htZXIuZGU+iQJTBBMBCgA9AhsDBwsJCAcDAgEGFQgCCQoLBBYC AwECHgECF4ACGQEWIQTtiFf7YVlWKVqPyHV1xpU4iL9leAUCWqL4ZgAKCRB1xpU4iL9leAAu EAC4GOVbu6jAWTMQwmCjzGFtVvuu0tFgqIHmJq9Qo5g+3AjJfBqCbAX9CMwURW+fVSXePzN1 uxm6FYVVX/NdOgFNufblsyCX3xW7C38RtllJGo76vV2P5BgahbcXLkLro6JtcdificyZ6pt0 Wnqhk1E4j/ygcGjKU7KEP/TRvth032Uc/79vlwGyITm4tOuEtd8Kiv0wLQResQZOf8Qs6HmU fG8d2q7duq6CguRwoO0FL2hYMrrUOUyu0WlhieTArwycovWHDmLZB/qEKbr3/lJLSnD/yg2S 9QHWbZVjQ0+hj6N62LOc7BRZvPTRgAIzHOG47pAdyHQakRp3d5D2JAXc2JuDZnPGxBsGGOes 9OFsknfMlVEWO75H6ofADvZxl2QI/itSbS6JSinhJi5nHrVLWiXhu4uZSn68vM+gZ4E7Dz/o tP+IjhJRvv8JTNJB2CQzPXh3U0hunZ7r455lA2mwhglXaAJtxzTpzMeWbI8O303hgPsYC/ht LulhyhpIK992+rb85S8KhCv7bALbyNjfQr1Ql3sNF8iv5FGtx86muyXDyReYODCrnb0hDZSm Ow1WHiCWINPEvE0qb0AVgtXnySGSH5Niv/0e7DWufgrk7oAoOJpuiweS0rxwstAFaB7BMPG+ HIv9Q3UOeJFesdmqtqMWljDOB+8SsBNqdM80SbkCDQRTFM70ARAAyyl9V4EJVZfuvA5aArYg 0D5ihWJKW0mzLdM+E/z7iTD4bUEzlrUgBrsfnZ3Sb8pZY6hWar1eq77gzOHLbTLfjRvsK0CJ FJIP57d5CX4D4yWLMNoujMnHLbP24BtiwoH+8r2rEgPI9p1dyzfsxA7GTUPRoOD/vKRSsktX Q6Pqx/ZKBcccdZ4IG7YFSHV5mmwfLkprNd8zx9YOso6HbPVIibjU1rujBdmGw2ho5FgO8izb J4tZJCwt3yl0PBezEfbI4b2S70y9cbFg2p3mtXn1YoSaMf9HyVGNqY7zOQJf716yuDN9NUSW bwyPROWIJGP2rc2p0F1+0R+1IAAg7wZPAqQQq9dxouh6XTtX5JU+JpkZbH9krr3DNgNp30CK o2hk2d5yRJ1TWXJpxFQ4VHdxzdOIEDzZIs0C3l0/oMuj5MN9Fiix/KzGiBYa7y4ug4Wry1nY 3StYAyFT2blx+Dh+rARVoJ4UQkufkN9/39OAXKvgekPckPe3N3Kb3xDia+W/ugfIl8hl8nFs GGOqn0Q1E02YSeItpnNDi3ZdcnFZC7+mHn5efY32msFJA0z34M1dKiLuyn3wX52hnVE912+6 KpMg+OxbR1zkkqgF97V0nfB3YQKxa5FzcNxM4XXF8xsrfmWX08/P76dfPbpr45hZTWnOHy41 H7iYEbL5PRX59mEAEQEAAYkCPAQYAQoAJgIbDBYhBO2IV/thWVYpWo/IdXXGlTiIv2V4BQJa ovoFBQkLUJIRAAoJEHXGlTiIv2V4vakQAJAr6C/MEhjnQwUBcLLHxIF1Z7ms6goMYe64odHf eoaHsyMAw3webqgRQ7z8alFiQ+RwiL8nHq8+T14sQEDwAsNPQKb3ORUNJMzB62oFujbvOEPP GKjlAtMP47wkvv/B62aamztrKTRjGYjxAQLLVfhMZtAF7jKchEpEYTYCRVLpfScrZWa8pDhs DF6JRm4PmrB7Ol/BGktdcigbSbQa071BTSFHdFJ9MrGJ15npCeb2iaagFDGW91zvNUIlblVF JA8Vp8xZfSeldbYuVM5w4V+GidiXSK12QHIhRB3OIksbujf1VjdofjBt5oukuhWqs6I2Dkgf NtFbCOqaHOj3Rtn0jlnWg2vU01ojyytwTwrCjY6uxFJjWHXweyoSMtVBbQvge44bn23PDtAp gBW9oLyUpfxy7rI7HPsiLSTm7ybSZcWskOWEAKQOSFWXBUnBn/aHMEIhJQHIi/yeFWP5utLY psnmaiffcoRK1ii7Hlz/vJZs/EsKrcD2GuEgVN1jRcmAbM0mN5ZMU7Nrr1XoRzt9C3JUEd3n zZDnmD1e3GHpe3TklspMy2VWbznlSBXIGWq5/F2NsWhKRMjzAw5cCeqLDWi+pAr16M3PAwOQ fGL5OEdPOhTw/4UKm7eahP7jfvA0nUDUHxEelTaQZzmRjNY/iCbgJ5ovY4zTeDu3PDp8uQIN BFqkJjMBEAC5FqBhLhS+cLXX+GBTJSm6Ka+lwJXDZVCCkn6IN8KPDp3KjMNAdyiuBo2JENr/ AizNoNU7Vlekrqtz0XsmnlGwCQEsfyviSPtlzSQhdd8bvywEOrm6z/R7sE4763cMevcz08sP 7abu42t/Hs0hLikHNCgC+9AfQT7UwMMMf/SvbvohYCE+hSZw6KHp0iq8jAWQU9KiYMPLc8Cs PGqUAHJ/TjK/8KXAgaB+6DYobDZ8EAWppiKmmbajdV0vdzH9mfVmAJVwxGSmc85XWHDHCep+ 8Atmjb4M1Q09UBecvFw8CxlT1cocdm7/rLKy/Vy4pKY4mSQRhnF2aYIpduiFc+W2k+FLAUrj Nl+7aNblR9wzr0aeMr+9F3+MqJnoWitLGxSX62++cGJFFT1dhZIq1c0FJXYqaFg/nrIrhul1 2SuW7E3pWHd79AueaaFgfOGjtEZTuACL5Bc8xXDuf4+8JvbdnL9I+i+xK11fSnSOQ7c3adnv esHYe1Az9MTKmPbedj8DawRNfT3Qj2I7VPXU9Huo+LSPw6syLN/kuVSuwEh/jWAKTruBknIc ReDV6hyShmEJEe7Oq+on/v2iZaXirUzL1a9cRr6xZolc4N+YGBsiedTCBgWfbDvNpUK/cPRb xWLh5T1AJ0GlJJzH/PSur+rIqTIdMG62MBTf6cffxJl94wARAQABiQRyBBgBCAAmFiEE7YhX +2FZVilaj8h1dcaVOIi/ZXgFAlqkJjMCGwIFCQeEzgACQAkQdcaVOIi/ZXjBdCAEGQEIAB0W IQSaFHCXIjqqRqaQCB3hEniEZMpcYAUCWqQmMwAKCRDhEniEZMpcYAERD/9ZOQGavim3oB2a Nh7Aqmf1LTsrp5zhkYChfNOktD9LuB7esuJRA1qV3cTekeYUA4xj6lTrN+BYfZc0i1wsHrXJ kSQNtpkX9+LV5zE1alSVhQ3WwoGM3bNu72tjCvoNAovAbHgC3yac8JbvhpAYa1kxodsB+y3P TohhEXgiceIr8TQd/rtnrxzjjv3C/ucTM+ta043QDPpGRrdtyZSjZY5xysJ0Nc79oL9mSoQo Vv9j/p4gYcmBv8zPFZpG7tKVK5hsKnSCVnoq8IQPFU2K6KwGeVS+8Tlg325L2uSMjWelz1OB x+mpogGBjtvOT3vIs1052NHEj8HCyJaD/YDGpvPNC6qyspCq5Cjt4Fvi0+80lW6sjqWAc1lf dYWFx1V7w5LDAhedBGmYU77uuK06e5lMw47zbcTdHA1auS8iSekKa1kKNkCCu3TxFpSREoRY q+sNzTq1sppZv0KiqOYRSRZvTX9HZcZDbXEN4TsoEYMZhuXQ3FN6Vpwf4r6roPzMXX+O5PWW HblieMFuhtWoUGUcmv7btqZ9rFlw+2ZTqTEHMrI0+NgBo2McvKhx3XkYpaYAz31hFCiL85Xc 89u0uLLsNNO0vP7hRYfmgXYlcn1KNp0K2lj5RVnwlxlfPHEYIUbiOFewJTNFbi7CNrTPGMNJ 9MBJRX+DXN9fMyJITCQ8RbudEACCYuh3P4wRUVpccHLa4CWKl9ZUUeh3ch3XEjNrqMU+CEXc ocCcfwBhhMtapVzZvBrPIiV+pCizwJVpYdDTRkRN1jcsY7FMOlkszb8mR1O1aBPzFK4kkGNZ x3F0BQbZRnfDGX5Vg2FYsJvlIND7aoFN21aSeqzdCqctUJ1UM1oVvJGBke2Hf/ZaST97emns B5r4Aku7oJ5oRMWpbjNOcISqU87icxOFaJfal9QYJ+W8o4f9AbxYww7rbe0AKZvxFAOANVO3 mH8WnaQckuEd7spriWa/4ArLDCxCxfVr8Mfyc0KpJwFlkEHEARBrqmGs8Uf12zpCFpLNwaK6 rDCdeaukCCb1d08q+ylhEVe/+mcDNPlJ1Kyu+3AXVjCvXIseaqF+YhpnIbKegYG9+BIXvfCZ pgWj/h1mhUSUBp3TU7bJOvMvbr7ufrtlJA4yv+its4zh+pehVrsMo4OpCTg6L4u1VwRnp1ay IAhA59JggjprnIfPvZQOdoAHCwyUZdTtrVzN+b7+VVFH46Na1dJE0YCBKaGbPGVFtcKvRnzo x2bx9VPvRPM8aeanEO9Rz2rL5Otdh18GBcS29jVCIWVL0katvJyx9GoTqaPYi7Bn1sZ8Xo/n oaYj2/dH5YtzJQBUX+LFJxjyEQo749C9bdMT+QA3Zr2XGzp7FT90uKnTfBjr/A==
- In-reply-to: <6AF3E3F80B912BD3C33230CD@[192.168.1.144]>
- References: <6567442d-2fef-644a-1851-1e9b3b473a00@hachmer.de> <1dad84ea-dcb5-f716-ee15-b6037335acd1@stroeder.com> <6AF3E3F80B912BD3C33230CD@[192.168.1.144]>
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.1.0
Hi,
On 9/25/19 6:20 PM, Quanah Gibson-Mount wrote:
> --On Wednesday, September 25, 2019 6:57 PM +0200 Michael Ströder
> <michael@stroeder.com> wrote:
>
>> IIRC back-mdb needs export / re-import to make the OID change.
>
> Why would back-mdb require an export/import for an OID change in the
> schema? OpenLDAP does not store the OID internally in the binary
> databases.
Thanks for the replies, but the database backend is "hdb".
The attributes in question were placed in the nis schema
cn={3}nis,cn=schema,cn=config:
---
{25}( 1.3.6.1.1.1.1.28 NAME 'groupMemberShip' EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
{26}( 1.3.6.1.1.1.1.29 NAME 'apple-generateduid' DESC 'generated unique
ID' EQUALITY caseExactMatch SUBSTR caseExactSubstringsMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
---
I have moved these attributes via ldapmodify with this ldif:
---
dn: cn={3}nis,cn=schema,cn=config
changetype: modify
replace: olcAttributeTypes
olcAttributeTypes:
#...copy off all schema attributes but the two I want to move...#
dn: cn={5}kerio-mail-server,cn=schema,cn=config
changetype: modify
add: olcAttributeTypes
olcAttributeTypes: {15}(1.3.6.1.4.1.10311.1.2.2.29 NAME
'groupMemberShip' EQUALITY caseExactIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26)
olcAttributeTypes: {16}(1.3.6.1.4.1.10311.1.2.2.30 NAME
'apple-generateduid' DESC 'generated unique ID' EQUALITY caseExactMatch
SUBSTR caseExactSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE)
---
But after that the existing groupMemberShip attributes were purged from
the user objects. We use VMs and I have done snapshots before this
change, so I could roll back.
Did I move the attributes the wrong way?
Kind regards,
Tobias
Attachment:
signature.asc
Description: OpenPGP digital signature