Hi,
In an attempt to help myself, I enabled logging to 'loglevel 4' so got a lot of debug info out. During the copy of the objects under ou=group I got this error:
Jul 13 13:12:59 msldap01 slapd2.4[7156]: connection_get(16) Jul 13 13:12:59 msldap01 slapd2.4[7156]: ==> bdb_bind: dn: cn=proxyagent,ou=profile,dc=ldn,dc=sw,dc=com Jul 13 13:12:59 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text="" Jul 13 13:12:59 msldap01 slapd2.4[7156]: connection_get(16) Jul 13 13:12:59 msldap01 slapd2.4[7156]: SRCH "cn=dba,ou=group,dc=ldn,dc=sw,dc=com" 0 0 Jul 13 13:12:59 msldap01 slapd2.4[7156]: 0 0 0 Jul 13 13:12:59 msldap01 slapd2.4[7156]: filter: (objectClass=*) Jul 13 13:12:59 msldap01 slapd2.4[7156]: attrs: Jul 13 13:12:59 msldap01 slapd2.4[7156]: Jul 13 13:12:59 msldap01 slapd2.4[7156]: base_candidates: base: "cn=dba,ou=group,dc=ldn,dc=sw,dc=com" (0x0000004e) Jul 13 13:12:59 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text="" Jul 13 13:12:59 msldap01 slapd2.4[7156]: connection_get(17) Jul 13 13:12:59 msldap01 slapd2.4[7156]: ==> bdb_bind: dn: cn=proxyagent,ou=profile,dc=ldn,dc=sw,dc=com Jul 13 13:12:59 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text="" Jul 13 13:12:59 msldap01 slapd2.4[7156]: connection_get(17) Jul 13 13:12:59 msldap01 slapd2.4[7156]: conn=1013 op=1 do_add: dn (cn=copydba,ou=group,dc=ldn,dc=sw,dc=com) Jul 13 13:12:59 msldap01 slapd2.4[7156]: ==> bdb_add: cn=copydba,ou=group,dc=ldn,dc=sw,dc=com Jul 13 13:12:59 msldap01 slapd2.4[7156]: send_ldap_result: err=65 matched="" text="no structural object class provided" Jul 13 13:12:59 msldap01 slapd2.4[7156]: connection_get(16) Jul 13 13:12:59 msldap01 slapd2.4[7156]: connection_get(17)
So I tried to perform my initial task which was to add a CN to my top-level 'dc', I need to add a 'cn' for 'nisDomainObject' as SOlaris 10 expects this to be set. It fails with the same errors in phpLDAPadmin and the logfile says:
Jul 14 09:13:33 msldap01 slapd2.4[7156]: connection_get(16) Jul 14 09:13:33 msldap01 slapd2.4[7156]: ==> bdb_bind: dn: cn=proxyagent,ou=profile,dc=ldn,dc=sw,dc=com Jul 14 09:13:33 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text="" Jul 14 09:13:33 msldap01 slapd2.4[7156]: connection_get(16) Jul 14 09:13:33 msldap01 slapd2.4[7156]: SRCH "dc=ldn,dc=sw,dc=com" 0 0 Jul 14 09:13:33 msldap01 slapd2.4[7156]: 0 0 0 Jul 14 09:13:33 msldap01 slapd2.4[7156]: filter: (objectClass=*) Jul 14 09:13:33 msldap01 slapd2.4[7156]: attrs: Jul 14 09:13:33 msldap01 slapd2.4[7156]: Jul 14 09:13:33 msldap01 slapd2.4[7156]: base_candidates: base: "dc=ldn,dc=sw,dc=com" (0x00000001) Jul 14 09:13:33 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text="" Jul 14 09:13:33 msldap01 slapd2.4[7156]: connection_get(16) Jul 14 09:14:12 msldap01 slapd2.4[7156]: connection_get(16) Jul 14 09:14:12 msldap01 slapd2.4[7156]: ==> bdb_bind: dn: cn=proxyagent,ou=profile,dc=ldn,dc=sw,dc=com Jul 14 09:14:12 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text="" Jul 14 09:14:12 msldap01 slapd2.4[7156]: connection_get(16) Jul 14 09:14:12 msldap01 slapd2.4[7156]: conn=1023 op=1 do_add: dn (cn=MyDomainName,dc=ldn,dc=sw,dc=com) Jul 14 09:14:12 msldap01 slapd2.4[7156]: ==> bdb_add: cn=MyDomainName,dc=ldn,dc=sw,dc=com Jul 14 09:14:12 msldap01 slapd2.4[7156]: send_ldap_result: err=65 matched="" text="no structural object class provided" Jul 14 09:14:12 msldap01 slapd2.4[7156]: connection_get(16)
If someone could tell me at least where to look that'd be great.
Thanks,
Stuart.
From: stuart_cherrington@hotmail.co.uk To: openldap-technical@openldap.org Subject: DN failed to copy Date: Tue, 13 Jul 2010 10:37:11 +0000
Hi,
Not sure if this is an issue with phpLDAPadmin 1.0.1 or Openldap2.4 (on rhel 5.3). I've created posixGroup's within my openLDAP and can see these within phpLDAPadmin, I was trying to copy the objects within my 'dc' prior to some invasive work, but I cannot copy the posixGroups. I have done copies of all other objects but posixGroup copy errors with:
'Failed to copy DN: cn=copydba,ou=group,dc=ldn,dc=sw,dc=com
LDAP said: Object class violation Error number: 0x41 (LDAP_OBJECT_CLASS_VIOLATION) Description: You tried to perform an operation that would cause an undefined attribute to exist or that would remove a required attribute, given the current list of ObjectClasses. This can also occur if you do not specify a structural objectClass when creating an entry, or if you specify more than one structural objectClass.'
Having looked through countless web pages it suggests that the posixGroup definition in the rfc2037bis.schema should have a MUST clause but it already has this:
objectclass ( 1.3.6.1.1.1.2.2 NAME 'posixGroup' SUP top AUXILIARY DESC 'Abstraction of a group of accounts' MUST gidNumber MAY ( userPassword $ memberUid $ description ) )
Any advice would be great.
Thanks,
Stuart. Get a free e-mail account with Hotmail. Sign-up now. _________________________________________________________________ http://clk.atdmt.com/UKM/go/197222280/direct/01/ Do you have a story that started on Hotmail? Tell us now