Hi all,
I ve been trying to add an new custom objectclass (ndsLoginProperties) and i m always getting this error. Anyone can decipher it?
Oct 24 17:12:31 ldap slapd[79408]: bdb_referrals: op=104 target="cn=NDS,ou=Policies,dc=example,dc=com" matched="ou=Policies,dc=example,dc=com" Oct 24 17:12:31 ldap slapd[79408]: ==> bdb_add: cn=NDS,ou=Policies,dc=example,dc=com Oct 24 17:12:31 ldap slapd[79408]: daemon: select: listen=6 active_threads=0 tvp=NULL Oct 24 17:12:31 ldap slapd[79408]: bdb_add: entry failed schema check: naming attribute 'cn' is not present in entry (64) Oct 24 17:12:31 ldap slapd[79408]: daemon: select: listen=7 active_threads=0 tvp=NULL Oct 24 17:12:31 ldap slapd[79408]: send_ldap_result: conn=14 op=1 p=3 Oct 24 17:12:31 ldap slapd[79408]: send_ldap_result: err=64 matched="" text="naming attribute 'cn' is not present in entry" Oct 24 17:12:31 ldap slapd[79408]: send_ldap_response: msgid=2 tag=105 err=64 Oct 24 17:12:31 ldap slapd[79408]: conn=14 op=1 RESULT tag=105 err=64 text=naming attribute 'cn' is not present in entry
My schema that i m using is as follows:
attributetype ( 2.16.840.1.113719.1.1.4.1.25 NAME 'groupMembership' DESC 'groupMembership' SUP distinguishedName )
attributetype ( 2.16.840.1.113719.1.1.4.1.39 NAME 'loginAllowedTimeMap' DESC 'loginAllowedTimeMap' SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 )
attributetype ( 2.16.840.1.113719.1.1.4.1.40 NAME 'loginDisabled' DESC 'loginDisabled' SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( 2.16.840.1.113719.1.1.4.1.41 NAME 'loginExpirationTime' DESC 'loginExpirationTime' SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 )
attributetype ( 2.16.840.1.113719.1.1.4.1.42 NAME 'loginGraceLimit' DESC 'loginGraceLimit' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
attributetype ( 2.16.840.1.113719.1.1.4.1.43 NAME 'loginGraceRemaining' DESC 'loginGraceRemaining' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
attributetype ( 2.16.840.1.113719.1.1.4.1.44 NAME 'loginIntruderAddress' DESC 'loginIntruderAddress' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.45 NAME 'loginIntruderAttempts' DESC 'loginIntruderAttempts' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.47 NAME 'loginIntruderResetTime' DESC 'loginIntruderResetTime' SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 )
attributetype ( 2.16.840.1.113719.1.1.4.1.48 NAME 'loginMaximumSimultaneous' DESC 'loginMaximumSimultaneous' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.49 NAME 'loginScript' DESC 'loginScript' SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 )
attributetype ( 2.16.840.1.113719.1.1.4.1.50 NAME 'loginTime' DESC 'loginTime' SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 )
attributetype ( 2.16.840.1.113719.1.1.4.1.56 NAME 'networkAddressRestriction' DESC 'networkAddressRestriction' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.55 NAME 'networkAddress' DESC 'networkAddress' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.65 NAME 'passwordsUsed' DESC 'passwordsUsed' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.66 NAME 'passwordAllowChange' DESC 'passwordAllowChange' SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( 2.16.840.1.113719.1.1.4.1.67 NAME 'passwordExpirationInterval' DESC 'passwordExpirationInterval' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
attributetype ( 2.16.840.1.113719.1.1.4.1.68 NAME 'passwordExpirationTime' DESC 'passwordExpirationTime' SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 )
attributetype ( 2.16.840.1.113719.1.1.4.1.69 NAME 'passwordMinimumLength' DESC 'passwordMinimumLength' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
attributetype ( 2.16.840.1.113719.1.1.4.1.70 NAME 'passwordRequired' DESC 'passwordRequired' SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( 2.16.840.1.113719.1.1.4.1.71 NAME 'passwordUniqueRequired' DESC 'passwordUniqueRequired' SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( 2.16.840.1.113719.1.1.4.1.82 NAME 'privateKey' DESC 'privateKey' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.83 NAME 'profile' DESC 'profile' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.84 NAME 'publicKey' DESC 'publicKey' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.92 NAME 'securityEquals' DESC 'securityEquals' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
attributetype ( 2.16.840.1.113719.1.1.4.1.1 NAME 'accountBalance' DESC 'accountBalance' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.4 NAME 'allowUnlimitedCredit' DESC 'allowUnlimitedCredit' SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( 2.16.840.1.113719.1.1.4.1.54 NAME 'minimumAccountBalance' DESC 'minimumAccountBalance' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.34 NAME 'language' DESC 'language' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.37 NAME 'lockedByIntruder' DESC 'lockedByIntruder' SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
attributetype ( 2.16.840.1.113719.1.1.4.1.96 NAME 'serverHolds' DESC 'serverHolds' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.35 NAME 'lastLoginTime' DESC 'lastLoginTime' SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 )
attributetype ( 2.16.840.1.113719.1.1.4.1.116 NAME 'higherPrivileges' DESC 'higherPrivileges' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.165 NAME 'securityFlags' DESC 'securityFlags' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.171 NAME 'profileMembership' DESC 'profileMembership' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 2.16.840.1.113719.1.1.4.1.178 NAME 'timezone' DESC 'timezone' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
objectclass ( 2.16.840.1.113719.1.1.6.1.33 NAME 'ndsLoginProperties' DESC 'ndsLoginProperties' SUP Top MAY ( groupMembership $ loginAllowedTimeMap $ loginDisabled $ loginExpirationTime $ loginGraceLimit $ loginGraceRemaining $ loginIntruderAddress $ loginIntruderAttempts $ loginIntruderResetTime $ loginMaximumSimultaneous $ loginScript $ loginTime $ networkAddressRestriction $ networkAddress $ passwordsUsed $ passwordAllowChange $ passwordExpirationInterval $ passwordExpirationTime $ passwordMinimumLength $ passwordRequired $ passwordUniqueRequired $ privateKey $ profile $ publicKey $ securityEquals $ accountBalance $ allowUnlimitedCredit $ minimumAccountBalance $ language $ lockedByIntruder $ serverHolds $ lastLoginTime $ higherPrivileges $ securityFlags $ profileMembership $ timezone ) )
--On Wednesday, October 24, 2007 5:21 PM +0800 Benny Chee chee.benny@gmail.com wrote:
Hi all,
I ve been trying to add an new custom objectclass (ndsLoginProperties) and i m always getting this error. Anyone can decipher it?
Oct 24 17:12:31 ldap slapd[79408]: bdb_referrals: op=104 target="cn=NDS,ou=Policies,dc=example,dc=com" matched="ou=Policies,dc=example,dc=com" Oct 24 17:12:31 ldap slapd[79408]: ==> bdb_add: cn=NDS,ou=Policies,dc=example,dc=com Oct 24 17:12:31 ldap slapd[79408]: daemon: select: listen=6 active_threads=0 tvp=NULL Oct 24 17:12:31 ldap slapd[79408]: bdb_add: entry failed schema check: naming attribute 'cn' is not present in entry (64) Oct 24 17:12:31 ldap slapd[79408]: daemon: select: listen=7 active_threads=0 tvp=NULL Oct 24 17:12:31 ldap slapd[79408]: send_ldap_result: conn=14 op=1 p=3 Oct 24 17:12:31 ldap slapd[79408]: send_ldap_result: err=64 matched="" text="naming attribute 'cn' is not present in entry" Oct 24 17:12:31 ldap slapd[79408]: send_ldap_response: msgid=2 tag=105 err=64 Oct 24 17:12:31 ldap slapd[79408]: conn=14 op=1 RESULT tag=105 err=64 text=naming attribute 'cn' is not present in entry
It is pretty simple. You don't have a value of cn: NDS in your LDIF file. So just like it says, you are missing the naming attribute cn with a value of NDS in the entry.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
Benny Chee wrote:
Oct 24 17:12:31 ldap slapd[79408]: conn=14 op=1 RESULT tag=105 err=64 text=naming attribute 'cn' is not present in entry
See http://www.openldap.org/faq/data/cache/1006.html
Ciao, Michael.
Michael Ströder writes:
Benny Chee wrote:
Oct 24 17:12:31 ldap slapd[79408]: conn=14 op=1 RESULT tag=105 err=64 text=naming attribute 'cn' is not present in entry
Actually RFC 4511 (section 4.7) changed such an Add request to be valid. Slapd should be changed to add those attributes if the request didn't include them. (Unless slapd already does that. I can't test the different versions just now.)
openldap-software@openldap.org
-
Benny Chee -
Hallvard B Furuseth -
Michael Ströder -
Quanah Gibson-Mount