On Thu, Sep 15, 2016 at 10:36:18PM +0200, Ralf Mattes wrote:
Am Donnerstag, 15. September 2016 22:19 CEST, "Ralf Mattes" r.mattes@mh-freiburg.de schrieb:
O.k. - I found the culprit (but not the solution). Trying to configure a olcRelay attribut whose value is a DN containing one ore more spaces will fail. I tried all sorts of escaping that value but nothing seems o work.
Is this a bug?
Some more info: using the same value as olcSuffix will generate the same error, so some the olcSuffix value seems to be parsed different that olcRelay even so the are suppoed to have the same syntax.
This is ITS#8284. Fixed in OpenLDAP 2.4.43.
The following config seems to work for me:
dn: olcDatabase={1}mdb,cn=config objectClass: olcMdbConfig olcSuffix: o=ACME Corp olcDbDirectory: data
dn: olcDatabase={2}relay,cn=config objectClass: olcRelayConfig olcSuffix: o=Foobar Conglomerate olcRelay: o=ACME Corp
dn: olcOverlay=rwm,olcDatabase={2}relay,cn=config objectClass: olcRwmConfig olcRwmRewrite: rwm-suffixmassage "o=ACME Corp"