Hi,
In an attempt to help myself, I enabled logging to 'loglevel 4' so got a lot of debug info out. During the copy of the objects under ou=group I got this error:
Jul 13 13:12:59 msldap01 slapd2.4[7156]: connection_get(16)
Jul 13
13:12:59 msldap01 slapd2.4[7156]: ==> bdb_bind: dn:
cn=proxyagent,ou=profile,dc=ldn,dc=sw,dc=com
Jul 13 13:12:59 msldap01
slapd2.4[7156]: send_ldap_result: err=0 matched="" text=""
Jul 13
13:12:59 msldap01 slapd2.4[7156]: connection_get(16)
Jul 13 13:12:59
msldap01 slapd2.4[7156]: SRCH "cn=dba,ou=group,dc=ldn,dc=sw,dc=com" 0 0
Jul
13 13:12:59 msldap01 slapd2.4[7156]: 0 0 0
Jul 13 13:12:59
msldap01 slapd2.4[7156]: filter: (objectClass=*)
Jul 13 13:12:59
msldap01 slapd2.4[7156]: attrs:
Jul 13 13:12:59 msldap01
slapd2.4[7156]:
Jul 13 13:12:59 msldap01 slapd2.4[7156]:
base_candidates: base: "cn=dba,ou=group,dc=ldn,dc=sw,dc=com"
(0x0000004e)
Jul 13 13:12:59 msldap01 slapd2.4[7156]:
send_ldap_result: err=0 matched="" text=""
Jul 13 13:12:59 msldap01
slapd2.4[7156]: connection_get(17)
Jul 13 13:12:59 msldap01
slapd2.4[7156]: ==> bdb_bind: dn:
cn=proxyagent,ou=profile,dc=ldn,dc=sw,dc=com
Jul 13 13:12:59 msldap01
slapd2.4[7156]: send_ldap_result: err=0 matched="" text=""
Jul 13
13:12:59 msldap01 slapd2.4[7156]: connection_get(17)
Jul 13 13:12:59
msldap01 slapd2.4[7156]: conn=1013 op=1 do_add: dn
(cn=copydba,ou=group,dc=ldn,dc=sw,dc=com)
Jul 13 13:12:59 msldap01
slapd2.4[7156]: ==> bdb_add: cn=copydba,ou=group,dc=ldn,dc=sw,dc=com
Jul
13 13:12:59 msldap01 slapd2.4[7156]: send_ldap_result: err=65
matched="" text="no structural object class provided"
Jul 13 13:12:59
msldap01 slapd2.4[7156]: connection_get(16)
Jul 13 13:12:59 msldap01
slapd2.4[7156]: connection_get(17)
So I tried to perform my initial task which was to add a CN to my top-level 'dc', I need to add a 'cn' for 'nisDomainObject' as SOlaris 10 expects this to be set. It fails with the same errors in phpLDAPadmin and the logfile says:
Jul 14 09:13:33 msldap01 slapd2.4[7156]: connection_get(16)
Jul 14 09:13:33 msldap01 slapd2.4[7156]: ==> bdb_bind: dn: cn=proxyagent,ou=profile,dc=ldn,dc=sw,dc=com
Jul 14 09:13:33 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text=""
Jul 14 09:13:33 msldap01 slapd2.4[7156]: connection_get(16)
Jul 14 09:13:33 msldap01 slapd2.4[7156]: SRCH "dc=ldn,dc=sw,dc=com" 0 0
Jul 14 09:13:33 msldap01 slapd2.4[7156]: 0 0 0
Jul 14 09:13:33 msldap01 slapd2.4[7156]: filter: (objectClass=*)
Jul 14 09:13:33 msldap01 slapd2.4[7156]: attrs:
Jul 14 09:13:33 msldap01 slapd2.4[7156]:
Jul 14 09:13:33 msldap01 slapd2.4[7156]: base_candidates: base: "dc=ldn,dc=sw,dc=com" (0x00000001)
Jul 14 09:13:33 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text=""
Jul 14 09:13:33 msldap01 slapd2.4[7156]: connection_get(16)
Jul 14 09:14:12 msldap01 slapd2.4[7156]: connection_get(16)
Jul 14 09:14:12 msldap01 slapd2.4[7156]: ==> bdb_bind: dn: cn=proxyagent,ou=profile,dc=ldn,dc=sw,dc=com
Jul 14 09:14:12 msldap01 slapd2.4[7156]: send_ldap_result: err=0 matched="" text=""
Jul 14 09:14:12 msldap01 slapd2.4[7156]: connection_get(16)
Jul 14 09:14:12 msldap01 slapd2.4[7156]: conn=1023 op=1 do_add: dn (cn=MyDomainName,dc=ldn,dc=sw,dc=com)
Jul 14 09:14:12 msldap01 slapd2.4[7156]: ==> bdb_add: cn=MyDomainName,dc=ldn,dc=sw,dc=com
Jul 14 09:14:12 msldap01 slapd2.4[7156]: send_ldap_result: err=65 matched="" text="no structural object class provided"
Jul 14 09:14:12 msldap01 slapd2.4[7156]: connection_get(16)
If someone could tell me at least where to look that'd be great.
Thanks,
Stuart.
From: stuart_cherrington@hotmail.co.uk
To: openldap-technical@openldap.org
Subject: DN failed to copy
Date: Tue, 13 Jul 2010 10:37:11 +0000
Hi,
Not sure if this is an issue with phpLDAPadmin 1.0.1 or
Openldap2.4 (on rhel 5.3). I've created posixGroup's within my openLDAP
and can see these within phpLDAPadmin, I was trying to copy the objects
within my 'dc' prior to some invasive work, but I cannot copy the
posixGroups. I have done copies of all other objects but posixGroup copy
errors with:
'Failed to copy DN:
cn=copydba,ou=group,dc=ldn,dc=sw,dc=com
LDAP said: Object class violation
Error number: 0x41
(LDAP_OBJECT_CLASS_VIOLATION)
Description: You tried to perform an
operation that would cause an undefined attribute to exist or that would
remove a required attribute, given the current list of ObjectClasses.
This can also occur if you do not specify a structural objectClass when
creating an entry, or if you specify more than one structural
objectClass.'
Having looked through countless web pages it
suggests that the posixGroup definition in the rfc2037bis.schema should
have a MUST clause but it already has this:
objectclass (
1.3.6.1.1.1.2.2 NAME 'posixGroup' SUP top AUXILIARY
DESC
'Abstraction of a group of accounts'
MUST gidNumber
MAY (
userPassword $ memberUid $
description ) )
Any advice
would be great.
Thanks,
Stuart.
Get a free e-mail account with Hotmail. Sign-up now.
Get a free e-mail account with Hotmail. Sign-up now.