Hello all!
Trying to get memberOf overlay working.
Added to slapd.conf "overlay memberof"
Restarted slapd.
Checked that overlay loaded
# slaptest -d 1 ............. config_build_entry: "olcOverlay={1}memberof" .............
Then added 1 user and 2 groups via ldif:
dn: cn=test,ou=users,dc=domain,dc=local sn: test cn: test uid: test objectClass: inetOrgPerson objectClass: top objectClass: person objectClass: posixAccount objectClass: shadowAccount objectClass: radiusprofile uidNumber: 5555 gidNumber: 5555 homeDirectory: /home/test givenName: test loginShell: /bin/sh shadowMin: 0 shadowMax: 999 shadowWarning: 7 shadowInactive: -1 shadowExpire: 0 shadowFlag: 0 dialupAccess: yes
dn: cn=testgroup,ou=servers,dc=domain,dc=local objectclass: groupOfNames cn: testgroup member: cn=test,ou=users,dc=domain,dc=local
dn: cn=maingroup,ou=servers,dc=domain,dc=local objectclass: groupOfNames cn: maingroup member: cn=testgroup,ou=servers,dc=domain,dc=local
And made
# ldapsearch -x -D "cn=admin,dc=domain,dc=local" -b "dc=domain,dc=local" -W "(cn=test)" memberOf
# extended LDIF # # LDAPv3 # base <dc=domain,dc=local> with scope subtree # filter: (cn=test) # requesting: memberOf #
# test, users, domain.local dn: cn=test,ou=users,dc=domain,dc=local
# search result search: 2 result: 0 Success
# numResponses: 2 # numEntries: 1
As you see - no memberOf in users attrs.
I got no ideas why...
By that I wanted to test output of ldapsearch to check will there be two or one memberOf attrs.
Thanks!
2010/12/9 c0re nr1c0re@gmail.com:
Hello all!
Trying to get memberOf overlay working.
Added to slapd.conf "overlay memberof"
Restarted slapd.
Checked that overlay loaded
# slaptest -d 1 ............. config_build_entry: "olcOverlay={1}memberof" .............
Then added 1 user and 2 groups via ldif:
dn: cn=test,ou=users,dc=domain,dc=local sn: test cn: test uid: test objectClass: inetOrgPerson objectClass: top objectClass: person objectClass: posixAccount objectClass: shadowAccount objectClass: radiusprofile uidNumber: 5555 gidNumber: 5555 homeDirectory: /home/test givenName: test loginShell: /bin/sh shadowMin: 0 shadowMax: 999 shadowWarning: 7 shadowInactive: -1 shadowExpire: 0 shadowFlag: 0 dialupAccess: yes
dn: cn=testgroup,ou=servers,dc=domain,dc=local objectclass: groupOfNames cn: testgroup member: cn=test,ou=users,dc=domain,dc=local
dn: cn=maingroup,ou=servers,dc=domain,dc=local objectclass: groupOfNames cn: maingroup member: cn=testgroup,ou=servers,dc=domain,dc=local
And made
# ldapsearch -x -D "cn=admin,dc=domain,dc=local" -b "dc=domain,dc=local" -W "(cn=test)" memberOf
# extended LDIF # # LDAPv3 # base <dc=domain,dc=local> with scope subtree # filter: (cn=test) # requesting: memberOf #
# test, users, domain.local dn: cn=test,ou=users,dc=domain,dc=local
# search result search: 2 result: 0 Success
# numResponses: 2 # numEntries: 1
As you see - no memberOf in users attrs.
I got no ideas why...
By that I wanted to test output of ldapsearch to check will there be two or one memberOf attrs.
Thanks!
openldap 2.4.23
2010/12/9 c0re nr1c0re@gmail.com:
2010/12/9 c0re nr1c0re@gmail.com:
Hello all!
Trying to get memberOf overlay working.
Added to slapd.conf "overlay memberof"
Restarted slapd.
Checked that overlay loaded
# slaptest -d 1 ............. config_build_entry: "olcOverlay={1}memberof" .............
Then added 1 user and 2 groups via ldif:
dn: cn=test,ou=users,dc=domain,dc=local sn: test cn: test uid: test objectClass: inetOrgPerson objectClass: top objectClass: person objectClass: posixAccount objectClass: shadowAccount objectClass: radiusprofile uidNumber: 5555 gidNumber: 5555 homeDirectory: /home/test givenName: test loginShell: /bin/sh shadowMin: 0 shadowMax: 999 shadowWarning: 7 shadowInactive: -1 shadowExpire: 0 shadowFlag: 0 dialupAccess: yes
dn: cn=testgroup,ou=servers,dc=domain,dc=local objectclass: groupOfNames cn: testgroup member: cn=test,ou=users,dc=domain,dc=local
dn: cn=maingroup,ou=servers,dc=domain,dc=local objectclass: groupOfNames cn: maingroup member: cn=testgroup,ou=servers,dc=domain,dc=local
And made
# ldapsearch -x -D "cn=admin,dc=domain,dc=local" -b "dc=domain,dc=local" -W "(cn=test)" memberOf
# extended LDIF # # LDAPv3 # base <dc=domain,dc=local> with scope subtree # filter: (cn=test) # requesting: memberOf #
# test, users, domain.local dn: cn=test,ou=users,dc=domain,dc=local
# search result search: 2 result: 0 Success
# numResponses: 2 # numEntries: 1
As you see - no memberOf in users attrs.
I got no ideas why...
By that I wanted to test output of ldapsearch to check will there be two or one memberOf attrs.
Thanks!
openldap 2.4.23
Sorry, it's working. Just needed to remake member attr in group. But nested groups recursively not working in memberOf overlay. :(
openldap-technical@openldap.org
-
c0re