(ITS#7322) Problem in LDAP Server - openldap-bugs

5 Jul 2012


      Full_Name: Kashif Hameed
Version: openldap-2.3.43
OS: Centos 32  Bit
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (203.215.176.22)
Dear All
please help me its my first job and its my final assignment my job is totally on
this assignment.
We have multiple servers of linux, Centos and Ubuntu, Debian my boss want to
implement openldap in this situation that user will manage from central
location. so i have started work on this and successfull to implement 1 case
that is if we will create a simple user its authanticate but when we want to
give sudo rights then it will return error here is the eroor please help me how
to resolve this issue
[root@ldapprod ~]# service ldap restart
Stopping slapd:                                            [  OK  ]
Checking configuration files for slapd:                    [FAILED]
/etc/openldap/schema/sudo.schema: line 1: AttributeType SYNTAX or SUPerior
required: "sudoUser"
slaptest: bad configuration file!
Here is the file for your reference please look into this where syntax is wrong
attributetype ( 1.3.6.1.4.1.15953.9.1.1 NAME 'sudoUser' )
DESC 'User(s) who may run sudo'
EQUALITY caseExactIA5Match
SUBSTR caseExactIA5SubstringsMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
attributetype ( 1.3.6.1.4.1.15953.9.1.2 NAME 'sudoHost'
DESC 'Host(s) who may run sudo'
EQUALITY caseExactIA5Match
SUBSTR caseExactIA5SubstringsMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
attributetype ( 1.3.6.1.4.1.15953.9.1.3 NAME 'sudoCommand'
DESC 'Command(s) to be executed by sudo'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
attributetype ( 1.3.6.1.4.1.15953.9.1.4 NAME 'sudoRunAs'
DESC 'User(s) impersonated by sudo'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
attributetype ( 1.3.6.1.4.1.15953.9.1.5 NAME 'sudoOption'
DESC 'Options(s) followed by sudo'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
objectclass ( 1.3.6.1.4.1.15953.9.2.1 NAME 'sudoRole'
SUP top STRUCTURAL
DESC 'Sudoer Entries'
MUST ( cn )
MAY ( sudoUser $ sudoHost $ sudoCommand $ sudoRunAs $ sudoOption $
description ) X-ORIGIN 'SUDO' )
Thanks