From: bgmilne@staff.telkomsa.net To: openldap-technical@openldap.org Subject: Re: Adding rfc schema clashes Date: Tue, 13 Jul 2010 15:47:31 +0100 CC: stuart_cherrington@hotmail.co.uk
On Tuesday, 13 July 2010 09:53:39 Stuart Cherrington wrote:
Hi,
Think I fixed this one myself, I've replaced the nis.schema with rfc2307bis.schema as it contains everything and more that nis.schema does.
But, not the same ... and you should check that all your clients support rfc2307bis (e.g., groupOfNames groups with DN-valued member attributes, instead of posixGroup-only groups with username-valued memberUid attributes).
Not sure how I check what Solaris clients need ion the LDAP server end, will troll through google. I 'was' using the nis.schema, but then found that I couldn't bind the ldap on my SOlaris clients to the openldap server as the nisDomainObject was a missing objecttype. When I found this in rfc2307bis I had to replace nis.schema with it and I found I couldn't use both.
Not sure if I'm 'allowed' to do this but my initial problem was copying a posixGroup, the posixGroup def in rfc2307bis.schema lists the objecttype as 'AUXILIARY' and no 'cn' is MAY/MUST optioned. so I added 'cn' to the MAY section and changed the objectclass to 'STRUCTURAL', can now now copy posixGroups without errors.
Please let me know if I'm breaking anything.
[...]
Hi,
Running OpenLDAP 2.4 on RHEL 5.
In order for my SOlaris 10 clients to start using the OpenLDAP service I need the objectclass 'nisDomainObject' to be declared. I found this objecttype in the 'rfc2307bis.schema' file so I've added it into the slapd.conf and now LDAP fails to restart with
/usr/share/openldap2.4/schema/nis.schema: line 53 attributetype: Duplicate attributeType: "1.3.6.1.1.1.1.2" slaptest2.4: bad configuration file!
Your other alternative is to just copy the nisDomainObject and related attributes to a separate schema file.
I did a quick check the and "1.3.6.1.1.1.1.2" is declared in the nis.schema for the gecos attributetype.
Can I alter the number within the rfc schema?
That wouldn't help ...
Regards, Buchan
_________________________________________________________________ http://clk.atdmt.com/UKM/go/197222280/direct/01/ We want to hear all your funny, exciting and crazy Hotmail stories. Tell us now