Hi, I'm very new ldap, and i'm wondering if you guys can help me with something.
I'm going over the some tutorials to setup ldap for authentication. However, I can't seem to be able to add any users or groups. I'm Solaris 9, w/ openldap 2.3.35.
my slapd.conf looks like:
database bdb suffix "dc=caplan,dc=org" rootdn "cn=root,dc=caplan,dc=org" rootpw <PASSWORD> directory /usr/local/var/openldap-data index objecClass,uid,uidNumer,gidNumber eq index cn eq
the user i'm trying to add is:
dn: uid=ldapauth,dc=caplan,dc=org objectclass: account objectclass: posixAccount objectclass: top cn: ldapauth uid: ldapauth uidNumber: 100 gidNumber: 100
I have no trailling spaces.
my add commands is : ldapadd -D "cn=root,dc=caplan,dc=org" -f <File>
no matter what i do i get "Invalid syntax"
Thanks in advance, Vinh
--On Tuesday, January 29, 2008 3:24 PM -0500 Vinh.CTR.Hoang@faa.gov wrote:
my add commands is : ldapadd -D "cn=root,dc=caplan,dc=org" -f <File>
Do you mean:
ldapadd -x -D <dn> -f <File>
?
And make sure you have the OpenLDAP ldapadd, not the solaris default ldapadd.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
I think posixAccount requires homeDirectory as well. W/o that your syntax is invalid because the objectclass is being violated.
( nisSchema.2.0 NAME 'posixAccount' SUP top AUXILIARY DESC 'Abstraction of an account with POSIX attributes' MUST ( cn $ uid $ uidNumber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell $ gecos $ description ) )
(source: RFC2307 : http://www.ietf.org/rfc/rfc2307.txt) Sellers
On Jan 29, 2008, at 3:24 PM, Vinh.CTR.Hoang@faa.gov wrote:
Hi, I'm very new ldap, and i'm wondering if you guys can help me with something.
I'm going over the some tutorials to setup ldap for authentication. However, I can't seem to be able to add any users or groups. I'm Solaris 9, w/ openldap 2.3.35.
my slapd.conf looks like:
database bdb suffix "dc=caplan,dc=org" rootdn "cn=root,dc=caplan,dc=org" rootpw <PASSWORD> directory /usr/local/var/openldap-data index objecClass,uid,uidNumer,gidNumber eq index cn eq
the user i'm trying to add is:
dn: uid=ldapauth,dc=caplan,dc=org objectclass: account objectclass: posixAccount objectclass: top cn: ldapauth uid: ldapauth uidNumber: 100 gidNumber: 100
I have no trailling spaces.
my add commands is : ldapadd -D "cn=root,dc=caplan,dc=org" -f <File>
no matter what i do i get "Invalid syntax"
Thanks in advance, Vinh
|----------------------------------------------------------------------| Chris G. Sellers, MLS Lead Internet Engineer National Institute for Technology & Liberal Education 535 West William Street, Ann Arbor, Michigan 48103 chris.sellers@nitle.org 734.661.2318
So I added a homeDirectory for the ldapauth user as /var/empty. and now getting Invalid syntax (21) additional info: objectClass: value #0 invalid per syntax
"Chris G. Sellers" chris.sellers@nitle.org 01/29/2008 04:16 PM
To Vinh CTR Hoang/ACT/CNTR/FAA@FAA cc openldap-software@openldap.org Subject Re: Invalid syntax on ldapadd
I think posixAccount requires homeDirectory as well. W/o that your syntax is invalid because the objectclass is being violated.
( nisSchema.2.0 NAME 'posixAccount' SUP top AUXILIARY DESC 'Abstraction of an account with POSIX attributes' MUST ( cn $ uid $ uidNumber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell $ gecos $ description ) )
(source: RFC2307 : http://www.ietf.org/rfc/rfc2307.txt) Sellers
On Jan 29, 2008, at 3:24 PM, Vinh.CTR.Hoang@faa.gov wrote:
Hi, I'm very new ldap, and i'm wondering if you guys can help me with something.
I'm going over the some tutorials to setup ldap for authentication. However, I can't seem to be able to add any users or groups. I'm Solaris 9, w/ openldap 2.3.35.
my slapd.conf looks like:
database bdb suffix "dc=caplan,dc=org" rootdn "cn=root,dc=caplan,dc=org" rootpw <PASSWORD> directory /usr/local/var/openldap-data index objecClass,uid,uidNumer,gidNumber eq index cn eq
the user i'm trying to add is:
dn: uid=ldapauth,dc=caplan,dc=org objectclass: account objectclass: posixAccount objectclass: top cn: ldapauth uid: ldapauth uidNumber: 100 gidNumber: 100
I have no trailling spaces.
my add commands is : ldapadd -D "cn=root,dc=caplan,dc=org" -f <File>
no matter what i do i get "Invalid syntax"
Thanks in advance, Vinh
|----------------------------------------------------------------------| Chris G. Sellers, MLS Lead Internet Engineer National Institute for Technology & Liberal Education 535 West William Street, Ann Arbor, Michigan 48103 chris.sellers@nitle.org 734.661.2318
Chris G. Sellers wrote:
I think posixAccount requires homeDirectory as well. W/o that your syntax is invalid because the objectclass is being violated.
Then he would have received an Object Class Violation message instead. Don't make up answers if you don't know them. If you want to help, that's great, but know what you're talking about first. It's not so hard to look up the list of error codes and what they mean.
On Jan 29, 2008, at 3:24 PM, Vinh.CTR.Hoang@faa.gov mailto:Vinh.CTR.Hoang@faa.gov wrote:
Hi, I'm very new ldap, and i'm wondering if you guys can help me with something.
I'm going over the some tutorials to setup ldap for authentication. However, I can't seem to be able to add any users or groups. I'm Solaris 9, w/ openldap 2.3.35.
my slapd.conf looks like:
database bdb suffix "dc=caplan,dc=org" rootdn "cn=root,dc=caplan,dc=org" rootpw <PASSWORD> directory /usr/local/var/openldap-data index objecClass,uid,uidNumer,gidNumber eq
Is "objecClass" just a typo in your email, or mis-typed in your slapd.conf too? Same for "uidNumer".
Being new to LDAP isn't an excuse for being sloppy or careless. Every computing system in the world will only process the exact input you give it. Succeeding with LDAP doesn't really take any esoteric knowledge; it just requires you to pay attention to what you're doing, the same skills that you need in any other field.
index cn eq
the user i'm trying to add is:
dn: uid=ldapauth,dc=caplan,dc=org objectclass: account objectclass: posixAccount objectclass: top cn: ldapauth uid: ldapauth uidNumber: 100 gidNumber: 100
I have no trailling spaces.
my add commands is : ldapadd -D "cn=root,dc=caplan,dc=org" -f <File>
no matter what i do i get "Invalid syntax"
|----------------------------------------------------------------------| Chris G. Sellers, MLS Lead Internet Engineer National Institute for Technology & Liberal Education 535 West William Street, Ann Arbor, Michigan 48103 chris.sellers@nitle.org mailto:chris.sellers@nitle.org 734.661.2318
Funny, I used to have an office in that building, about 20 years ago...
openldap-software@openldap.org
-
Chris G. Sellers -
Howard Chu -
Quanah Gibson-Mount -
Vinh.CTR.Hoang@faa.gov