Hi,
I was wondering if anyone has successfully made schema and data migration from OpenLDAP (current version: openldap-2.4.49) to OUD (Oracle Unified Directory 11g) or ODSEE (Oracle Directory Server Enterprise Edition 11g).
We are trying to make Zimbra servers (currently using OpenLDAP directory on each server Zimbra installed) use a centralized MMR-enabled OUD environment. But we couldn't find any migration documentation on that.
Thanks,
-Bora
--On Wednesday, April 7, 2021 1:47 PM +0000 borabaysal@borabaysal.com wrote:
Hi,
I was wondering if anyone has successfully made schema and data migration from OpenLDAP (current version: openldap-2.4.49) to OUD (Oracle Unified Directory 11g) or ODSEE (Oracle Directory Server Enterprise Edition 11g).
We are trying to make Zimbra servers (currently using OpenLDAP directory on each server Zimbra installed) use a centralized MMR-enabled OUD environment. But we couldn't find any migration documentation on that.
Hi,
Good luck with that, Zimbra is tightly integrated with OpenLDAP's features, some of which OUD does not have. It's not clear to me why you wouldn't simply use the MMR support already built into Zimbra, or why you'd want to migrate to an inferior LDAP implementation.
It also sounds like you don't fully understand how to properly deploy Zimbra, as one of its deployment points is that you can deploy its internal LDAP instances into their own cluster used by the rest of the Zimbra system.
Generally there is not going to be discussion on this list on how to migrate off of OpenLDAP.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
--On Wednesday, April 7, 2021 9:34 AM -0700 Quanah Gibson-Mount quanah@symas.com wrote:
--On Wednesday, April 7, 2021 1:47 PM +0000 borabaysal@borabaysal.com wrote: It also sounds like you don't fully understand how to properly deploy Zimbra, as one of its deployment points is that you can deploy its internal LDAP instances into their own cluster used by the rest of the Zimbra system.
OpenLDAP MMR cluster, specifically.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
Quanah Gibson-Mount wrote:
--On Wednesday, April 7, 2021 1:47 PM +0000 borabaysal@borabaysal.com wrote:
Hi,
I was wondering if anyone has successfully made schema and data migration from OpenLDAP (current version: openldap-2.4.49) to OUD (Oracle Unified Directory 11g) or ODSEE (Oracle Directory Server Enterprise Edition 11g).
We are trying to make Zimbra servers (currently using OpenLDAP directory on each server Zimbra installed) use a centralized MMR-enabled OUD environment. But we couldn't find any migration documentation on that.
Hi,
Good luck with that, Zimbra is tightly integrated with OpenLDAP's features, some of which OUD does not have. It's not clear to me why you wouldn't simply use the MMR support already built into Zimbra, or why you'd want to migrate to an inferior LDAP implementation.
It also sounds like you don't fully understand how to properly deploy Zimbra, as one of its deployment points is that you can deploy its internal LDAP instances into their own cluster used by the rest of the Zimbra system.
Generally there is not going to be discussion on this list on how to migrate off of OpenLDAP.
Further: ODSEE is already end-of-life, everyone is busy migrating *away* from it. Mostly to OpenLDAP. Migrating to ODSEE would be a futile waste of effort.
Howard Chu wrote:
Quanah Gibson-Mount wrote:
--On Wednesday, April 7, 2021 1:47 PM +0000 borabaysal(a)borabaysal.com wrote:
Hi,
I was wondering if anyone has successfully made schema and data migration from OpenLDAP (current version: openldap-2.4.49) to OUD (Oracle Unified Directory 11g) or ODSEE (Oracle Directory Server Enterprise Edition 11g).
We are trying to make Zimbra servers (currently using OpenLDAP directory on each server Zimbra installed) use a centralized MMR-enabled OUD environment. But we couldn't find any migration documentation on that.
Hi,
Good luck with that, Zimbra is tightly integrated with OpenLDAP's features, some of which OUD does not have. It's not clear to me why you wouldn't simply use the MMR support already built into Zimbra, or why you'd want to migrate to an inferior LDAP implementation.
It also sounds like you don't fully understand how to properly deploy Zimbra, as one of its deployment points is that you can deploy its internal LDAP instances into their own cluster used by the rest of the Zimbra system.
Generally there is not going to be discussion on this list on how to migrate off of OpenLDAP.
Further: ODSEE is already end-of-life, everyone is busy migrating *away* from it. Mostly to OpenLDAP. Migrating to ODSEE would be a futile waste of effort.
Oh yes, we are in the middle of ODSEE-to-OUD Transition Project currently. If there is no use of LDAP roles and CoS, not much schema extension, it is pretty straightforward migration scheme with the supplied migration tools. At least there is a documentation for this ODSEE-to-OUD transition supplied by Oracle. I thought if we could migrate from OpenLDAP to ODSEE somehow, it would be easier migrating from ODSEE to OUD later on which is not we prefer though since we are trying to get rid of ODSEE already.
Thanks for reply,
-Bora
On 4/8/21 5:40 PM, borabaysal@borabaysal.com wrote:
Oh yes, we are in the middle of ODSEE-to-OUD Transition Project currently. If there is no use of LDAP roles and CoS, not much schema extension, it is pretty straightforward migration scheme with the supplied migration tools. At least there is a documentation for this ODSEE-to-OUD transition supplied by Oracle.
Well, you're paying the expensive vendor Oracle and you're migrating from one Oracle product to another. Fair enough, Oracle provides tools and docs to do the job. This is expected.
I thought if we could migrate from OpenLDAP to ODSEE somehow, it would be easier migrating from ODSEE to OUD later on which is not we prefer though since we are trying to get rid of ODSEE already.
When migrating from vendor A to vendor B, do you really expect vendor A to provide migration guide or even tools at no cost for no good reason? Seriously?
Why don't you ask Oracle, the vendor you're paying a huge amount of money, for such a migration tool/guide?
Personally I'm sometimes really astonished what people are asking for... :-/
Ciao, Michael.
Quanah Gibson-Mount wrote:
--On Wednesday, April 7, 2021 1:47 PM +0000 borabaysal(a)borabaysal.com wrote:
Hi,
I was wondering if anyone has successfully made schema and data migration from OpenLDAP (current version: openldap-2.4.49) to OUD (Oracle Unified Directory 11g) or ODSEE (Oracle Directory Server Enterprise Edition 11g).
We are trying to make Zimbra servers (currently using OpenLDAP directory on each server Zimbra installed) use a centralized MMR-enabled OUD environment. But we couldn't find any migration documentation on that.
Hi,
Hi Quanah,
Good luck with that, Zimbra is tightly integrated with OpenLDAP's features, some of which OUD does not have. It's not clear to me why you wouldn't simply use the MMR support already built into Zimbra, or why you'd want to migrate to an inferior LDAP implementation.
We - LDAP Team - are giving LDAP authentication services to the applications in the enterprise. Our LDAP services are built onto Oracle ODSEE and OUD products in which we have experience with 15+ years with, starting with Sun Directory 18 years ago.
Zimbra team asked us if their Zimbra system would use of our Oracle's directory systems in which we give support only to these directory products. Otherwise they would operate their new MMR-capable OpenLDAP systems on their own.
It also sounds like you don't fully understand how to properly deploy Zimbra, as one of its deployment points is that you can deploy its internal LDAP instances into their own cluster used by the rest of the Zimbra system.
Yes they are able to deploy that clustered MMR OpenLDAP system out of internal OpenLDAP servers on each Zimbra installation.
Generally there is not going to be discussion on this list on how to migrate off of OpenLDAP.
Sounds like doing such migration is not going to be easy ;)
Regards, Quanah
Thanks for your reply anyway.
-Bora
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
--On Thursday, April 8, 2021 4:23 PM +0000 borabaysal@borabaysal.com wrote:
Hi Quanah,
Good luck with that, Zimbra is tightly integrated with OpenLDAP's features, some of which OUD does not have. It's not clear to me why you wouldn't simply use the MMR support already built into Zimbra, or why you'd want to migrate to an inferior LDAP implementation.
We - LDAP Team - are giving LDAP authentication services to the applications in the enterprise.
Zimbra fully supports offloading the authentication piece to an external LDAP server, this is well documented. What you will not be able to do is remove Zimbra's internal usage of OpenLDAP.
https://wiki.zimbra.com/wiki/External_LDAP_authentication_with_zimbraAuthLdapExternalDn https://wiki.zimbra.com/wiki/LDAP_Authentication
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
borabaysal@borabaysal.com wrote:
Quanah Gibson-Mount wrote: We - LDAP Team - are giving LDAP authentication services to the applications in the enterprise. Our LDAP services are built onto Oracle ODSEE and OUD products in which we have experience with 15+ years with, starting with Sun Directory 18 years ago.
Zimbra team asked us if their Zimbra system would use of our Oracle's directory systems in which we give support only to these directory products. Otherwise they would operate their new MMR-capable OpenLDAP systems on their own.
It also sounds like you don't fully understand how to properly deploy Zimbra, as one of its deployment points is that you can deploy its internal LDAP instances into their own cluster used by the rest of the Zimbra system.
Yes they are able to deploy that clustered MMR OpenLDAP system out of internal OpenLDAP servers on each Zimbra installation.
Generally there is not going to be discussion on this list on how to migrate off of OpenLDAP.
Sounds like doing such migration is not going to be easy ;)
You're better off migrating from ODSEE directly to OpenLDAP. In OpenLDAP 2.5 we already have replication support for consuming data from an ODSEE master.
OUD is quite a resource hog...
openldap-technical@openldap.org
-
borabaysal@borabaysal.com -
Howard Chu -
Michael Ströder -
Quanah Gibson-Mount