I am planning on utilizing OpenLdap as a repository for users and authentication credentials. I have installed the software and edited the slapd.conf specific to my domain. In slapd.conf, I noticed that it includes core.schema, so I took a look inside this file to see what fields (attributes) are specified. The 'uid' and 'userPassword' attributes are commented out and since it is recommended not to edit this file, I was wondering how I go about enabling these attributes? I have already tried creating another schema file and including that in my slapd.conf, but when I attempted to run, it stated that those attributes already exist.
Thanks in advance, Jeremiah
--On Saturday, November 10, 2007 2:27 PM -0800 Jeremiah Lopez jeremiah.lopez@gmail.com wrote:
I am planning on utilizing OpenLdap as a repository for users and authentication credentials. I have installed the software and edited the slapd.conf specific to my domain. In slapd.conf, I noticed that it includes core.schema, so I took a look inside this file to see what fields (attributes) are specified. The 'uid' and 'userPassword' attributes are commented out and since it is recommended not to edit this file, I was wondering how I go about enabling these attributes? I have already tried creating another schema file and including that in my slapd.conf, but when I attempted to run, it stated that those attributes already exist.
They are commented out, because they are *hard coded* into slapd. If you look at the source, look at the schema_init.c file.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
Jeremiah Lopez schrieb: [uid, userPassword missing in core.schema]
I was wondering how I go about enabling these attributes? I have already tried creating another schema file and including that in my slapd.conf, but when I attempted to run, it stated that those attributes already exist.
And it is correct here as they are hardcoded in the slapd binary. Just use them.
cheers Paul
On Sunday 11 November 2007 00:27:25 Jeremiah Lopez wrote:
I am planning on utilizing OpenLdap as a repository for users and authentication credentials. I have installed the software and edited the slapd.conf specific to my domain. In slapd.conf, I noticed that it includes core.schema, so I took a look inside this file to see what fields (attributes) are specified. The 'uid' and 'userPassword' attributes are commented out and since it is recommended not to edit this file, I was wondering how I go about enabling these attributes? I have already tried creating another schema file and including that in my slapd.conf, but when I attempted to run, it stated that those attributes already exist.
I think the better answer to your question in this case is: If you would like to know what schema definitions are available in the server, instead of looking at the configuration for such schema definitions, use the exiting interfaces to list the schema definitions on the server.
For example:
$ ldapsearch -h localhost -x -s base -b cn=subschema attributetypes| perl -p0e 's/\n //g'|grep userPassword attributeTypes: ( 2.5.4.35 NAME 'userPassword' DESC 'RFC2256/2307: password of user' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} )
Regards, Buchan
openldap-software@openldap.org
-
Buchan Milne -
Jeremiah Lopez -
pkoelle@gmail.com -
Quanah Gibson-Mount