Lydon, Mark writes:
Root error: [LDAP: error code 21 - vpnscheduledreports: value #0 invalid per syntax] 05:21:23 PM: Failed to synchronize entries Root error: [LDAP: error code 21 - vpnbookmarks: value #0 invalid per syntax] 05:21:24 PM: Failed to synchronize entries Root error: [LDAP: error code 21 - useraccounts: value #0 invalid per syntax]
These attributes are derived from attribute 'name', so they get Directory String syntax (like most LDAP attributes). Directory String in LDAPv3 takes a non-empty UTF-8 string. Maybe your attributes are Latin-1, and your old server either is an LDAPv2 server (LDAPv2 character sets were a complete jungle) or does not check the syntax? If so the correct fix is to convert to UTF-8. However maybe that breaks your current applications, if they expect Latin-1... (You could hack the schema to use another syntax, but that easily becomes a maintenance nightmare and could have compatibility problems of its own.)