hi quannah, well from the includes in slapd.conf it certainly would appear to have been installed

include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/misc.schema inlcude /etc/openldap/schema/sudoers.schema include /etc/openldap/schema/openldap.schema

however when I do a search for sudoRole it doesn't seem to show up

[root@ldap openldap]# ldapsearch -b '' -s base '(objectclass=*)' sudoRole -x -W -D "cn=Manager,dc=acadaca,dc=net" Enter LDAP Password: # extended LDIF # # LDAPv3 # base <> with scope baseObject # filter: (objectclass=*) # requesting: sudoRole #

# dn:

# search result search: 2 result: 0 Success

# numResponses: 2 # numEntries: 1

On Thu, Nov 4, 2010 at 5:41 PM, Quanah Gibson-Mount quanah@zimbra.com wrote:

Are you certain the schema for sudoRole has really been added?  Have you browsed the subschema entry while the server is running to verify it is present?

--Quanah

--On Thursday, November 04, 2010 5:25 PM -0400 Tim Dunphy bluethundr@gmail.com wrote:

...

My bad Quannah in sending to your direct email .. and my apologies

Well it seems that I am running version 2.3 on the CentOS box and version 2.4 on the FreeBSD box..

Here's the class definition for sudoRole

objectclass ( 1.3.6.1.4.1.15953.9.2.1 NAME 'sudoRole' SUP top STRUCTURAL    DESC 'Sudoer Entries'    MUST ( cn )    MAY ( sudoUser $ sudoHost $ sudoCommand $ sudoRunAs $ sudoRunAsUser $ sudoRunAsGroup $ sudoOption $            description )    )

could it be just that the older version is running under CentOS? any advice on how to get sudoRole working under openldap 2.3?

Are you certain the schema for sudoRole has really been added?  Have you browsed the subschema entry while the server is running to verify it is present?

--Quanah

--

Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc

---

Zimbra ::  the leader in open source messaging and collaboration