On 10.05.22 17:04, Quanah Gibson-Mount wrote:
--On Tuesday, May 10, 2022 5:57 PM +0200 René Gallati rene.gallati@ergon.ch wrote:
Hello list,
I have an openldap 2.4.49 (ubuntu 20.04 LTS) server pair running with syncrepl. I also have memberof overlay activated and during a debug session found out that this is a no-go. I was debugging a problem where an user record that is in two groups only shows one memberOf attribute value whereas other users show the expected amount of memberOf values.
Now I'm looking into replacing the memberof overlay but it appears that for my use case there is no replacement at all.
Hello,
OpenLDAP 2.4.49 is no longer supported nor does it have the functionality you are after. You need to upgrade to OpenLDAP 2.5 or later to make use of the updated version of dynlist.
If you are unable to package OpenLDAP 2.5 yourself, you may want to use the freely available from Symas or the LTB project.
Symas: https://repo.symas.com/soldap2.5/
LTB: https://ltb-project.org/download.html
Regards, Quanah
Hello Quanah,
thanks for the quick reply. I am not married to that specific version it was just what came with Ubuntu 20.04LTS. But I see that 22.04LTS actually has 2.5.11 in its base repository. I'm going to see if upgrading / reinstalling on that os is the easier way for us. Luckily I have a dev environment to play around.
When on openldap 2.5, is the correct way to do it with the
"dynlist-attrset groupOfURLs memberURL member+memberOf@groupOfNames"
syntax? I am a bit confused by the URL parameters which I don't have and cannot have but seem to be required.
Regards,
René