Hello again...
On a clean rocky linux install i cannot seem to be able to add the memberof.la module. Get below output:
61295355.3b7373e7 0x7ff631852940 @(#) $OpenLDAP: slapd 2.5.7 (Aug 19 2021 17:48:53) $ mockbuild@3b6af787015541c89363999d4338d587 :/builddir/build/BUILD/openldap-2.5.7/servers/slapd 61295356.01d90296 0x7ff631852940 config error processing cn={4}msuser,cn=schema,cn=config: olcAttributeTypes: Duplicate attributeType: "P�e�;V" 61295356.0203a145 0x7ff631852940 slapd stopped. 61295356.0204a690 0x7ff631852940 connections_destroy: nothing to destroy.
Here are all my steps I do:
wget -q https://repo.symas.com/configs/SOLDAP/rhel8/release25.repo -O /etc/yum.repos.d/soldap-release25.repo dnf install -y symas-openldap-clients symas-openldap-servers
# enable default configs cd /opt/symas/etc/openldap/ cp ldap.conf.default ldap.conf cp slapd.conf.default slapd.conf cp slapd.ldif.default slapd.ldif # use secret as cn=config password sed -i 's/^# rootpw/rootpw/g' slapd.conf
# make some dirs mkdir /opt/symas/etc/openldap/slapd.d mkdir /var/log/slapd/
# enable/start systemctl enable --now slapd source /etc/profile.d/50-soldap.sh
# the slapd.d dir will be empty so create the slapd-conf structure slaptest -f /opt/symas/etc/openldap/slapd.conf -F /opt/symas/etc/openldap/slapd.d
systemctl restart slapd cd
# change the cn=config secret cat >config-secret.ldif <<EOF dn: olcDatabase={0}config,cn=config changetype: modify replace: olcRootPW olcRootPW: {SSHA}blablabalblabla/ EOF
ldapadd -D cn=config -w secret -H ldapi:/// -f config-secret.ldif
# add a few schemas # had to remove tha last 7 lines tac /opt/symas/etc/openldap/schema/rfc2307bis.ldif | sed '1,7 d' | tac > /opt/symas/etc/openldap/schema/rfc2307bis-new.ldif for def in cosine.ldif rfc2307bis-new.ldif inetorgperson.ldif msuser.ldif; do ldapadd -D cn=config -w $config_pass -H ldapi:/// -f /opt/symas/etc/openldap/schema/$def done
# add memberof module cat >memberof-module.ldif <<EOF dn: cn=module,cn=config objectClass: olcModuleList cn: module olcModulePath: /opt/symas/lib/openldap/ olcModuleLoad: memberof.la EOF ldapadd -D cn=config -w $config_pass -H ldapi:/// -f memberof-module.ldif systemctl restart slapd
at this point i get the error from above....
I've looked around to see where the "Duplicate attribute" is... but cannot find it..
Any input is much appreciated! Thank you very much for the awesome support!!!!
-Dave