Hi,
The issues might come from the fact that ODSEE has implemented RFC 2307bis - which aimed to improve on the old RFC 2307. As far as I know this never got a real standard - even though some companies adopted it.
RFC 2307bis defines some things slightly different. from RFC2307. One of those cases is the gecos field which is a Directory String (SYNTAX 1.3.6.1.4.1.1466.115.121.1.15) and can take UTF-8 character.
Have a look here https://docs.ldap.com/specs/draft-howard-rfc2307bis-02.txt
Regards
Felix
--On Thursday, May 6, 2021 7:22 PM +0200 Felix Schmitt Felix-Schmitt@t-online.de wrote:
Hi,
The issues might come from the fact that ODSEE has implemented RFC 2307bis - which aimed to improve on the old RFC 2307. As far as I know this never got a real standard - even though some companies adopted it.
No, the problem is that the attribute value is not valid for the attribute defined SYNTAX.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
On 5/6/21 6:42 PM, Quanah Gibson-Mount wrote:
--On Thursday, May 6, 2021 7:22 PM +0200 Felix Schmitt Felix-Schmitt@t-online.de wrote:
The issues might come from the fact that ODSEE has implemented RFC 2307bis - which aimed to improve on the old RFC 2307.
No, the problem is that the attribute value is not valid for the attribute defined SYNTAX.
@Quanah: Indeed draft-howard-rfc2307bis-02 defines 'gecos' with DirectoryString syntax:
https://tools.ietf.org/html/draft-howard-rfc2307bis-02#section-3
@Felix: Try using a subschema file for RFC 2307bis instead of nis.schema (nis.ldif).
I'm not using it but you could try: https://github.com/jtyr/rfc2307bis
Ciao, Michael.
--On Thursday, May 6, 2021 8:03 PM +0200 Michael Ströder michael@stroeder.com wrote:
@Felix: Try using a subschema file for RFC 2307bis instead of nis.schema (nis.ldif).
Symas ships a copy in its OpenLDAP builds:
cn=config:
https://gitlab.symas.net/symas-public/openldap/-/raw/ubuntu/focal/debian/schema/rfc2307bis.ldif
or slapd.conf:
https://gitlab.symas.net/symas-public/openldap/-/raw/ubuntu/focal/debian/schema/rfc2307bis.schema
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
Quanah,
The links provided define the attribute syntax as IA5 and not DirectoryString--which I require. I've created a "local-nis.ldif" and simply replaced the gecos syntax from IA5(1.3.6.1.4.1.1466.115.121.1.26) to UTF-8(1.3.6.1.4.1.1466.115.121.1.15) and my base64 entries import fine now.
Can you tell me if this approach is incorrect or sub-optimal?
--Brian
--On Thursday, May 6, 2021 6:48 PM +0000 Brian Harkness harklib@protonmail.com wrote:
Quanah,
The links provided define the attribute syntax as IA5 and not DirectoryString--which I require. I've created a "local-nis.ldif" and simply replaced the gecos syntax from IA5(1.3.6.1.4.1.1466.115.121.1.26) to UTF-8(1.3.6.1.4.1.1466.115.121.1.15) and my base64 entries import fine now.
Hi Brian,
I reviewed the file and found that whomever originally created it had done so incorrectly in several spots in regards to the draft. I've updated it to correspond to the draft. Please download the current copy.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
openldap-technical@openldap.org
-
Brian Harkness -
Felix Schmitt -
Michael Ströder -
Quanah Gibson-Mount