Chris G. Sellers wrote:
I think posixAccount requires homeDirectory as well. W/o that your syntax is invalid because the objectclass is being violated.
Then he would have received an Object Class Violation message instead. Don't make up answers if you don't know them. If you want to help, that's great, but know what you're talking about first. It's not so hard to look up the list of error codes and what they mean.
On Jan 29, 2008, at 3:24 PM, Vinh.CTR.Hoang@faa.gov mailto:Vinh.CTR.Hoang@faa.gov wrote:
Hi, I'm very new ldap, and i'm wondering if you guys can help me with something.
I'm going over the some tutorials to setup ldap for authentication. However, I can't seem to be able to add any users or groups. I'm Solaris 9, w/ openldap 2.3.35.
my slapd.conf looks like:
database bdb suffix "dc=caplan,dc=org" rootdn "cn=root,dc=caplan,dc=org" rootpw <PASSWORD> directory /usr/local/var/openldap-data index objecClass,uid,uidNumer,gidNumber eq
Is "objecClass" just a typo in your email, or mis-typed in your slapd.conf too? Same for "uidNumer".
Being new to LDAP isn't an excuse for being sloppy or careless. Every computing system in the world will only process the exact input you give it. Succeeding with LDAP doesn't really take any esoteric knowledge; it just requires you to pay attention to what you're doing, the same skills that you need in any other field.
index cn eq
the user i'm trying to add is:
dn: uid=ldapauth,dc=caplan,dc=org objectclass: account objectclass: posixAccount objectclass: top cn: ldapauth uid: ldapauth uidNumber: 100 gidNumber: 100
I have no trailling spaces.
my add commands is : ldapadd -D "cn=root,dc=caplan,dc=org" -f <File>
no matter what i do i get "Invalid syntax"
|----------------------------------------------------------------------| Chris G. Sellers, MLS Lead Internet Engineer National Institute for Technology & Liberal Education 535 West William Street, Ann Arbor, Michigan 48103 chris.sellers@nitle.org mailto:chris.sellers@nitle.org 734.661.2318
Funny, I used to have an office in that building, about 20 years ago...