--On Tuesday, January 29, 2008 4:01 PM -0500 Vinh.CTR.Hoang@faa.gov wrote:
Oh i was going to ask about that. the x option is illegal for some reason. I might of been using the solaris ldapadd. Is there a way to tell which is which? I install openldap as a package so I don't really know where the OpenLDAP ldapadd went.
Keep replies on the list if you want further help.
type "which ldapadd" to see where the ldapadd you are using is located. If you don't know where the OpenLDAP installation put things, I suggest you figure that out first.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
Ok, I found the right ldapadd to use, but now i'm getting Invalid syntax (21) additional info: objectClass: value#0 invalid per syntax
thanks, Vinh
Quanah Gibson-Mount quanah@zimbra.com 01/29/2008 04:05 PM
To Vinh CTR Hoang/ACT/CNTR/FAA@FAA cc
Subject Re: Invalid syntax on ldapadd
--On Tuesday, January 29, 2008 4:01 PM -0500 Vinh.CTR.Hoang@faa.gov wrote:
Oh i was going to ask about that. the x option is illegal for some reason. I might of been using the solaris ldapadd. Is there a way to tell which is which? I install openldap as a package so I don't really know where the OpenLDAP ldapadd went.
Keep replies on the list if you want further help.
type "which ldapadd" to see where the ldapadd you are using is located. If
you don't know where the OpenLDAP installation put things, I suggest you figure that out first.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
At the prompt, type the commands below. It will put ldapadd in a mode that accepts data via standard in via the terminal, so you just type and press return. At the end, press return twice, and it should try to add your entry, and then you can press CTRL+C if it does not drop you back to a prompt. Adjust to wherever your openldap based ldapadd binary is. Please be sure you followed the quickstart guide on the OpenLDAP website and setup your DC in openldap too.
----
$> /usr/local/openldap/bin/ldapadd -x -D cn=root,dc=caplan,dc=org -H ldap://ldap.server:port -W <enter password>
dn: uid=ldapauth,dc=caplan,dc=org objectClass: account objectClass: posixAccount objectClass: top cn: ldapauth uid: ldapauth uidNumber: 100 gidNumber: 100 homeDirectory: /dev/null
<press return twice>
On Jan 29, 2008, at 4:29 PM, Vinh.CTR.Hoang@faa.gov wrote:
Ok, I found the right ldapadd to use, but now i'm getting Invalid syntax (21) additional info: objectClass: value#0 invalid per syntax
thanks, Vinh
Quanah Gibson-Mount quanah@zimbra.com 01/29/2008 04:05 PM
To Vinh CTR Hoang/ACT/CNTR/FAA@FAA cc Subject Re: Invalid syntax on ldapadd
--On Tuesday, January 29, 2008 4:01 PM -0500 Vinh.CTR.Hoang@faa.gov wrote:
Oh i was going to ask about that. the x option is illegal for some reason. I might of been using the solaris ldapadd. Is there a
way to
tell which is which? I install openldap as a package so I don't
really
know where the OpenLDAP ldapadd went.
Keep replies on the list if you want further help.
type "which ldapadd" to see where the ldapadd you are using is located. If you don't know where the OpenLDAP installation put things, I suggest you figure that out first.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc
Zimbra :: the leader in open source messaging and collaboration
______________________________________________ Chris G. Sellers | NITLE Technology 734.661.2318 | chris.sellers@nitle.org AIM: imthewherd | GTalk: cgseller@gmail.com
--On Tuesday, January 29, 2008 5:30 PM -0500 "Chris G. Sellers" chris.sellers@nitle.org wrote:
At the prompt, type the commands below. It will put ldapadd in a mode that accepts data via standard in via the terminal, so you just type and press return. At the end, press return twice, and it should try to add your entry, and then you can press CTRL+C if it does not drop you back to a prompt. Adjust to wherever your openldap based ldapadd binary is. Please be sure you followed the quickstart guide on the OpenLDAP website and setup your DC in openldap too.
The error is quite concise. It says that the first value for "objectClass" in the LDIF is not valid. So simply look at the LDIF file and figure out why. Most likely, the schema containing "account" is not loaded for the server.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
Hello,
Vinh.CTR.Hoang@faa.gov wrote:
Ok, I found the right ldapadd to use, but now i'm getting Invalid syntax (21) additional info: objectClass: value#0 invalid per syntax
So something isn't right with the Value#0 of the objectClass: attribute. Check if there are any "unusual" characters around "account" - if not, check if you have included "cosine.schema" into your configuration: It defines "account" as an object class.
If "cosine.schema" isn't loaded, your LDAP server probably doesn't know about an objectClass: account and rejects it as "invalid syntax".
bye Christian
Thanks, that was the problem. Is there any easy way to find out which objectClass goes with which schema, other then just reading all the schemas?
Thanks, Vinh
Christian Marg marg@rz.tu-clausthal.de 01/29/2008 05:32 PM
To Vinh CTR Hoang/ACT/CNTR/FAA@FAA cc openldap-software@openldap.org Subject Re: Invalid syntax on ldapadd
Hello,
Vinh.CTR.Hoang@faa.gov wrote:
Ok, I found the right ldapadd to use, but now i'm getting Invalid syntax (21) additional info: objectClass: value#0 invalid per syntax
So something isn't right with the Value#0 of the objectClass: attribute. Check if there are any "unusual" characters around "account" - if not, check if you have included "cosine.schema" into your configuration: It defines "account" as an object class.
If "cosine.schema" isn't loaded, your LDAP server probably doesn't know about an objectClass: account and rejects it as "invalid syntax".
bye Christian
Hello,
Vinh.CTR.Hoang@faa.gov wrote:
Thanks, that was the problem. Is there any easy way to find out which objectClass goes with which schema, other then just reading all the schemas?
use "grep"? Or google it.
In this case I used grep in $prefix/etc/openldap/schema to find out that "account" really is defined in a schema file - many object classes and attribute types are hardcoded into the openldap server. The hardcoded ones are commented out in the schema files.
If you want a list of all objectclasses/attributetypes your server supports:
ldapsearch -x -H ldap://yourhost -b "cn=subschema" -s base +
or use an ldap browser of your choice. I like phpldapadmin, ymmv.
bye Christian
openldap-software@openldap.org
-
Chris G. Sellers -
Christian Marg -
Quanah Gibson-Mount -
Vinh.CTR.Hoang@faa.gov