Hello,
I'm trying to find out the correct way to completely remove an attribute from an existing LDAP database. So far, I've been doing the following:
- Deleting this attribute from all existing entries in the directory:
ldapsearch -Y EXTERNAL -H ldapi:/// \ -b o=root '(toRemove=*)' dn -LLL | \ sed 's/^dn: (.*)$/dn: \1\nchangetype: modify\ndelete: toRemove/' | \ ldapmodify -Y EXTERNAL -H ldapi:///
- Removing all references to this attribute from the configuration (schema, index, ACLs, ...)
My problem is that slapschema still throws an error about this attribute:
6669bbb2 UNKNOWN attributeDescription "TOREMOVE" inserted.
I have double-checked and there are no references to this attribute in a database dump.
In this situation, a dump/restore solves the problem, but this requires a service interruption that I would like to avoid.
Do you have any ideas on how to work around this issue?
Regards,