openldap-technical August 2020

openldap-technical@openldap.org

39 participants
42 discussions

RE24 testing call #2 (OpenLDAP 2.4.51, LMDB 0.9.26)
by Quanah Gibson-Mount 06 Aug '20

06 Aug '20

This is the second testing call for OpenLDAP 2.4.51. Depending on the results, this may be the final testing call. Generally, get the code for RE24: <https://git.openldap.org/openldap/openldap/-/archive/OPENLDAP_REL_ENG_2_4/o…> Extract, configure, and build. Execute the test suite (via make test) after it is built. Optionally, cd tests && make its to run through the regression suite. Thanks! OpenLDAP 2.4.51 Engineering Added slapo-ppolicy implement Netscape password policy controls (ITS#9279) Fixed libldap retry loop in ldap_int_tls_connect (ITS#8650) Fixed libldap to use getaddrinfo in ldap_pvt_get_fqdn (ITS#9287) Fixed slapd syncrepl to not delete non-replicated attrs (ITS#9227) Fixed slapd syncrepl to correctly delete entries on resync (ITS#9282) Fixed slapd syncrepl to use replace on single valued attrs (ITS#9294, ITS#9295) Fixed slapd-perl dynamic config with threaded slapd (ITS#7573) Fixed slapo-ppolicy to expose the ppolicy control (ITS#9285) Fixed slapo-ppolicy race condition for pwdFailureTime (ITS#9302) Fixed slapo-chain to check referral (ITS#9262) Contrib Fix default prefix value for pw-argon2, pw-pbkdf2 modules (ITS#9248) slapo-allowed - Fix usage of unitialized variable (ITS#9308) Documentation ldap_parse_result(3) - Document ldap_parse_intermediate (ITS#9271) LMDB 0.9.26 Engineering ITS#9278 fix robust mutex cleanup for FreeBSD --Quanah -- Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: <http://www.symas.com>

5 5

Removing Overlay entry from cn=config
by Stefan Kania 03 Aug '20

03 Aug '20

Hello, I start experimenting with Ansible and OpenLDAP. Now I try to set up the overlay "synprov". I noticed that everytime I start my playbook the configuration over the overlay is added to the configuration again and again, so I now have: -------------- # {0}syncprov, {1}mdb, config dn: olcOverlay={0}syncprov,olcDatabase={1}mdb,cn=config objectClass: olcOverlayConfig objectClass: olcSyncProvConfig olcOverlay: {0}syncprov olcSpSessionlog: 300 # {1}syncprov, {1}mdb, config dn: olcOverlay={1}syncprov,olcDatabase={1}mdb,cn=config objectClass: olcOverlayConfig objectClass: olcSyncProvConfig olcOverlay: {1}syncprov olcSpSessionlog: 300 -------------- Then I tried to remove one of the entries with "ldapdelete" and got the following error: --------- ldapdelete -Y EXTERNAL -H ldapi:/// "olcOverlay={1}syncprov,olcDatabase={1}mdb,cn=config" SASL/EXTERNAL authentication started SASL username: gidNumber=1001+uidNumber=1001,cn=peercred,cn=external,cn=auth SASL SSF: 0 ldap_delete: Server is unwilling to perform (53) ------------------- How can I remove "dn: olcOverlay={1}syncprov,olcDatabase={1}mdb,cn=config" with ldapdelete? Or is there another way to remove the entry? Thank's for the any help Stefan

2 1

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

openldap-technical August 2020