I have been tasked with virtualizing our existing, aging, LDAP and CommuniGate Pro instances. Doing so will require moving from RHEL 5.X to CentOS 7.X, which means that the existing LDAP implementation has changed. Upon attempting to perform a "slaptest -f test.conf -F testing" where test.conf contains only an include statement that points to /etc/openldap/schema/cgp.schema, and testing is an empty directory, I receive the following error message:
59033edc /etc/openldap/schema/cgp.schema: line 640 objectClass: ObjectClass not found: "organization" slaptest: bad configuration directory!
I am able to verify that the various base includes in my LDAP server do include an objectClass "organization" and can verify same in phpLDAPadmin, and in other methods. I am new to the concepts presented here, and since we are using LDAP in what appears to me to be a non-standard use case, I am at a loss. I present the relevant "line 640" below, from the schema I am attempting to import:
objectClass ( 2.5.1000.0 NAME 'CommuniGateDomain' SUP 'organization' STRUCTURAL MAY ( cn $ dc ) )
Can someone perhaps tell me where I am going wrong, or how to more effectively troubleshoot this import?
John Cooter wrote:
Upon attempting to perform a “slaptest -f test.conf -F testing” where test.conf contains only an include statement that points to /etc/openldap/schema/cgp.schema, and testing is an empty directory, I receive the following error message:
59033edc /etc/openldap/schema/cgp.schema: line 640 objectClass: ObjectClass not found: "organization"
Normally you have to include various schema files shipped with OpenLDAP and after that add the include statements for your custom schema.
I am able to verify that the various base includes in my LDAP server do include an objectClass “organization” and can verify same in phpLDAPadmin, and in other methods.
So simply add /etc/openldap/schema/cgp.schema to your existing config file and test this config file with slaptest.
Ciao, Michael.
I did so, and got the message below. I was attempting to import it with a minimal import, to create the .ldif file that would be able to be included in an ldapadd statement.
-----Original Message----- From: Michael Ströder [mailto:michael@stroeder.com] Sent: Tuesday, May 02, 2017 3:43 PM To: John Cooter jcooter@atlantech.net; openldap-technical@openldap.org Subject: Re: Issue importing CGP schema into LDAP (centos 7)
John Cooter wrote:
Upon attempting to perform a “slaptest -f test.conf -F testing” where test.conf contains only an include statement that points to /etc/openldap/schema/cgp.schema, and testing is an empty directory, I receive the following error message:
59033edc /etc/openldap/schema/cgp.schema: line 640 objectClass: ObjectClass not found: "organization"
Normally you have to include various schema files shipped with OpenLDAP and after that add the include statements for your custom schema.
I am able to verify that the various base includes in my LDAP server do include an objectClass “organization” and can verify same in phpLDAPadmin, and in other methods.
So simply add /etc/openldap/schema/cgp.schema to your existing config file and test this config file with slaptest.
Ciao, Michael.
John Cooter wrote:
I did so, and got the message below. I was attempting to import it with a minimal import, to create the .ldif file that would be able to be included in an ldapadd statement.
If you have an existing dynamic configuration then you have to add complete schema via LDAP. The include statements do not work with dynamic configuration.
With static configuration also note that the order of include statements does matter.
Ciao, Michael.
-----Original Message----- From: Michael Ströder [mailto:michael@stroeder.com] Sent: Tuesday, May 02, 2017 3:43 PM To: John Cooter jcooter@atlantech.net; openldap-technical@openldap.org Subject: Re: Issue importing CGP schema into LDAP (centos 7)
John Cooter wrote:
Upon attempting to perform a “slaptest -f test.conf -F testing” where test.conf contains only an include statement that points to /etc/openldap/schema/cgp.schema, and testing is an empty directory, I receive the following error message:
59033edc /etc/openldap/schema/cgp.schema: line 640 objectClass: ObjectClass not found: "organization"
Normally you have to include various schema files shipped with OpenLDAP and after that add the include statements for your custom schema.
I am able to verify that the various base includes in my LDAP server do include an objectClass “organization” and can verify same in phpLDAPadmin, and in other methods.
So simply add /etc/openldap/schema/cgp.schema to your existing config file and test this config file with slaptest.
Ciao, Michael.
The existing configuration, was created as follows: Install ldap and related services ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/openldap/schema/cosine.ldif ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/openldap/schema/nis.ldif ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/openldap/schema/inetorgperson.ldif create test.conf which only contains a single line: include /etc/openldap/schema/cgp.schema run slaptest statement, as listed below. Get error. This slaptest statement should normally allow me to create the ldif to add to the schema, but it keeps failing. And I'm trying to figure out why and what I'm doing wrong.
-----Original Message----- From: Michael Ströder [mailto:michael@stroeder.com] Sent: Tuesday, May 02, 2017 3:56 PM To: John Cooter jcooter@atlantech.net; openldap-technical@openldap.org Subject: Re: Issue importing CGP schema into LDAP (centos 7)
John Cooter wrote:
I did so, and got the message below. I was attempting to import it with a minimal import, to create the .ldif file that would be able to be included in an ldapadd statement.
If you have an existing dynamic configuration then you have to add complete schema via LDAP. The include statements do not work with dynamic configuration.
With static configuration also note that the order of include statements does matter.
Ciao, Michael.
-----Original Message----- From: Michael Ströder [mailto:michael@stroeder.com] Sent: Tuesday, May 02, 2017 3:43 PM To: John Cooter jcooter@atlantech.net; openldap-technical@openldap.org Subject: Re: Issue importing CGP schema into LDAP (centos 7)
John Cooter wrote:
Upon attempting to perform a “slaptest -f test.conf -F testing” where test.conf contains only an include statement that points to /etc/openldap/schema/cgp.schema, and testing is an empty directory, I receive the following error message:
59033edc /etc/openldap/schema/cgp.schema: line 640 objectClass: ObjectClass not found: "organization"
Normally you have to include various schema files shipped with OpenLDAP and after that add the include statements for your custom schema.
I am able to verify that the various base includes in my LDAP server do include an objectClass “organization” and can verify same in phpLDAPadmin, and in other methods.
So simply add /etc/openldap/schema/cgp.schema to your existing config file and test this config file with slaptest.
Ciao, Michael.
openldap-technical@openldap.org
-
John Cooter -
Michael Ströder