Hi,
I tried the method suggested by Marco to populate memberOf attributes of existing entries:
How would you recommend getting memberof values populated in the existing directory?
If you can afford a sequence of: stop -> slapcat -> drop db -> slapadd Everything gets populated as desired.
I tried this and the directory was restored minus the memberOf attributes. I used the following commands on version 2.4.11 (yes, I know I have to upgrade ...) :
/usr/local/sbin/slapcat -l data_20111201.ldif (..drop db..) /usr/local/sbin/slapadd -c -v -l data_20111201.ldif
'Manual' group membership updates do result in the memberOf attributes getting updated, so I know the overlay is working.
Thanks, Bryce Powell
Hi, actually it has been a while since I did it last time... it could be that my memory starts to faulting. But this behaviour could also be due to the oldness of your memberOf overlay. I cannot afford again the slapcat/drop/slapadd these days, sorry.
Marco
On Thu, Dec 1, 2011 at 5:36 PM, Bryce Powell Bryce.Powell@telus.com wrote:
Hi,
I tried the method suggested by Marco to populate memberOf attributes of existing entries:
How would you recommend getting memberof values populated in the
existing directory?
If you can afford a sequence of: stop -> slapcat -> drop db -> slapadd Everything gets populated as desired.
I tried this and the directory was restored minus the memberOf attributes. I used the following commands on version 2.4.11 (yes, I know I have to upgrade …) :
/usr/local/sbin/slapcat -l data_20111201.ldif (..drop db..) /usr/local/sbin/slapadd -c -v –l data_20111201.ldif
‘Manual’ group membership updates do result in the memberOf attributes getting updated, so I know the overlay is working.
Thanks, *Bryce Powell
Hi,
I tried the method suggested by Marco to populate memberOf attributes of existing entries:
How would you recommend getting memberof values populated in the existing directory?
If you can afford a sequence of: stop -> slapcat -> drop db -> slapadd Everything gets populated as desired.
I tried this and the directory was restored minus the memberOf attributes. I used the following commands on version 2.4.11 (yes, I know I have to upgrade ...) :
/usr/local/sbin/slapcat -l data_20111201.ldif (..drop db..) /usr/local/sbin/slapadd -c -v -l data_20111201.ldif
'Manual' group membership updates do result in the memberOf attributes getting updated, so I know the overlay is working.
slapo-memberof(5) does not support tool mode; in order to populate the memberOf attribute of an existing database you need to use ldapadd(1). You could, for example, dump your group entries, remove them, and re-add them via ldapadd(1).
p.
slapo-memberof(5) does not support tool mode; in order to populate the memberOf attribute of an existing database you need to use ldapadd(1). You could, for example, dump your group entries, remove them, and re-add them via ldapadd(1).
Hi Ando, correct me if I'm wrong, but another method is to populate a slave with syncrepl. slapo-memberOf should be triggered in this case too, isn't it?
Thanks Marco
masarati@aero.polimi.it wrote:
slapo-memberof(5) does not support tool mode; in order to populate the memberOf attribute of an existing database you need to use ldapadd(1). You could, for example, dump your group entries, remove them, and re-add them via ldapadd(1).
IIRC it is sufficient to just re-add the member values.
Ciao, Michael.
Michael,
Michael Ströder schrieb (01.12.2011 18:55 Uhr):
masarati@aero.polimi.it wrote:
slapo-memberof(5) does not support tool mode; in order to populate the memberOf attribute of an existing database you need to use ldapadd(1). You could, for example, dump your group entries, remove them, and re-add them via ldapadd(1).
IIRC it is sufficient to just re-add the member values.
So, a ldif dump of all groups converted to "changetype: modify replace:member" ldifs for all groups with the same values as before would be enough, right? This would minimize the time where the group members are not like they /should to/ nearly zero, nice.
Marc
openldap-technical@openldap.org
-
Bryce Powell -
Marc Patermann -
Marco Pizzoli -
masarati@aero.polimi.it -
Michael Ströder