Hello,
I am using openldap 2.4.16 and everything seems to work (the server starts and I can add/modify/delete entries). But I had some problems to build a frontend and it seems to be linked to my RootDSE.
When I make a : *ldapsearch -h myserver -x -s base -b "" +*
I only get : *# extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) # requesting: + #
# search result search: 2 result: 0 Success
# numResponses: 1*
But when I make this same request on an old openldap instance I get the "correct" answer: *# extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) # requesting: + #
# dn: structuralObjectClass: OpenLDAProotDSE configContext: cn=config namingContexts: ou=awl,dc=atosorigin,dc=com monitorContext: cn=Monitor supportedControl: 1.3.6.1.4.1.4203.1.9.1.1 supportedControl: 2.16.840.1.113730.3.4.18 supportedControl: 2.16.840.1.113730.3.4.2 supportedControl: 1.3.6.1.4.1.4203.1.10.1 supportedControl: 1.2.840.113556.1.4.319 supportedControl: 1.2.826.0.1.334810.2.3 supportedControl: 1.2.826.0.1.3344810.2.3 supportedControl: 1.3.6.1.1.13.2 supportedControl: 1.3.6.1.1.13.1 supportedControl: 1.3.6.1.1.12 supportedExtension: 1.3.6.1.4.1.1466.20037 supportedExtension: 1.3.6.1.4.1.4203.1.11.1 supportedExtension: 1.3.6.1.4.1.4203.1.11.3 supportedFeatures: 1.3.6.1.1.14 supportedFeatures: 1.3.6.1.4.1.4203.1.5.1 supportedFeatures: 1.3.6.1.4.1.4203.1.5.2 supportedFeatures: 1.3.6.1.4.1.4203.1.5.3 supportedFeatures: 1.3.6.1.4.1.4203.1.5.4 supportedFeatures: 1.3.6.1.4.1.4203.1.5.5 supportedLDAPVersion: 3 entryDN: subschemaSubentry: cn=Subschema
# search result search: 2 result: 0 Success
# numResponses: 2 # numEntries: 1*
I have search in some schema files but I didn't find any OpenLDAProotDSE definition... Do I miss something? I am quite a newbie and I have found any information to set it. I know that I can put the definition with the "rootdse" directive in my slapd.conf but I don't know if it is the right way?
Could anyone help me please? Thanks in advance for your help.
Lionel
Lepoutre Lionel wrote:
When I make a : /ldapsearch -h myserver -x -s base -b "" +/
I only get : /# extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) # requesting: + #
# search result search: 2 result: 0 Success
Do you have ACLs which also apply to the rootDSE?
Ciao, Michael.
Hi Michael,
I was about to answer my email :) As I have not found any mistakes in my slapd.conf I simply delete it and make it again from scratch! And now: it works! I don't know what was wrong but here is my acl config to give an example for people that may need it.
access to dn.base="" by * read access to dn.base="cn=Subschema" by * read access to * by self write by users read by anonymous auth
I have some others but they are specific to some attributes and I don't think it will be usefull for others. I must admit that I don't know what exactly refers to my RootDSE but now it is OK.
Anyway, thank you for your answer.
Lionel
2009/5/27 Michael Ströder michael@stroeder.com
Lepoutre Lionel wrote:
When I make a : /ldapsearch -h myserver -x -s base -b "" +/
I only get : /# extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) # requesting: + #
# search result search: 2 result: 0 Success
Do you have ACLs which also apply to the rootDSE?
Ciao, Michael.
openldap-software@openldap.org