Hello Andrew, Chris, Marc and everyone,
Our system administrator accidentally blew the machine away. then reinstalled Ubuntu from scratch I personally installed and configured OpenLDAP server. I was able to add users and groups. Yet, I am again unable to add sssvlv support.
If I run the script as cn=admin,dc=test,dc=com, I get the below error. vq@vq-HVM-domU:~$ ldapadd -x -D "cn=admin,dc=test,dc=com" -W -f sssvlv.ldif Enter LDAP Password: adding new entry "olcOverlay=sssvlv,olcDatabase={1}hdb,cn=config" ldap_add: Invalid syntax (21) additional info: objectClass: value #0 invalid per syntax
Running it as cn=config gives me another error: vq@vq-HVM-domU:~$ ldapadd -x -D cn=config -W -f sssvlv.ldif Enter LDAP Password: ldap_bind: Invalid credentials (49)
There is a change, though. I see "olcRootDN: cn=admin,dc=test,dc=com and olcRootPW" when I do slapcat. I did not see those before.
As per Marc's suggestion, I am attaching the output of slapcat(8). While I learned a bit about OpenLDAP configuration, my "skills" are clearly insufficient to figure out how to add sssvlv support.
My sssvlv.ldif is below: dn: olcOverlay=sssvlv,olcDatabase={1}hdb,cn=config objectClass: olcSssVlvConfig olcOverlay: sssvlv olcSssVlvMax: 10 olcSssVlvMaxKeys: 5
It was composed by Chris, as your's truly has to clue what needs to go there.
Please advise. I am totally stumbled.
Thank you,
Igor Shmukler
On Wed, Nov 12, 2014 at 7:41 PM, Quanah Gibson-Mount quanah@zimbra.com wrote:
--On November 12, 2014 at 6:23:53 PM +0100 Marc Patermann hans.moser@ofd-z.niedersachsen.de wrote:
You can change the exported config or post it here, if you have not before. This may tell you/us how to authorize to slapd with ldapadd to modify the config online.
Ubuntu already documents how to authorize to the config db, and I already provided a URL to the Ubuntu documentation. Here's the link again:
https://help.ubuntu.com/lts/serverguide/openldap-server.html
which clearly provides an example of how to bind to the root database via ldapsearch (which can logically be extended to ldapmodify, ldapadd, etc).
--Quanah
-- Quanah Gibson-Mount Platform Architect Zimbra, Inc
Zimbra :: the leader in open source messaging and collaboration