Hi,
I state that I am a beginner to Ldap !!! I have a problem with the configuration of the Chain Overlay. Provider and Consumer are identical
CentOS release 6.5 openldap-servers-2.4.40-1.el6.x86_64
On the Consumer: I configured
olcPPolicyForwardUpdates=TRUE in the Ppolicy Overlay and olcUpdateRef: ldap://stfalf02devpom.sociale.it in the ldif file of Ldap DB
imported the ldif file:
dn: olcOverlay=chain,olcDatabase={1}sociale,cn=config objectClass: olcOverlayConfig objectClass: olcChainConfig olcOverlay: chain olcChainCacheURI: FALSE olcChainMaxReferralDepth: 1 olcChainReturnError: FALSE
created the directory
/usr/local/openldap/etc/openldap/slapd.d/cn=config/olcDatabase= {1}sociale/olcOverlay={4}chain
and imported the ldif file:
dn: olcDatabase=ldap,olcOverlay={4}chain,olcDatabase={1}sociale,cn=config objectClass: olcChainDatabase objectClass: olcConfig objectClass: olcDatabaseConfig objectClass: olcLDAPConfig olcDatabase: ldap olcDbIDAssertBind: bindmethod=simple
binddn="uid=selmopi,ou=admin_esercizio,ou=Utenze,ou=Amministratori,dc=socia le,dc=it" credentials=strofinella mode=self olcDbURI: ldap://stfalf02devpom.sociale.it
All operations were successful but the overlay does not work and does not know why, there are no errors in the logs !!! Help, I do not know where to turn !!! Thanks
Best Regards Stefano
Am Tue, 2 Dec 2014 10:34:26 +0000 (UTC) schrieb Stefano stefano.elmopi@sociale.it:
Hi,
I state that I am a beginner to Ldap !!! I have a problem with the configuration of the Chain Overlay. Provider and Consumer are identical
CentOS release 6.5 openldap-servers-2.4.40-1.el6.x86_64
On the Consumer: I configured
olcPPolicyForwardUpdates=TRUE in the Ppolicy Overlay and olcUpdateRef: ldap://stfalf02devpom.sociale.it in the ldif file of Ldap DB
imported the ldif file:
dn: olcOverlay=chain,olcDatabase={1}sociale,cn=config objectClass: olcOverlayConfig objectClass: olcChainConfig olcOverlay: chain olcChainCacheURI: FALSE olcChainMaxReferralDepth: 1 olcChainReturnError: FALSE
There is no such thing as olcDatabase=sociale, the database should be of type as defined in slapd.conf(5), section GENRAL DATABASE OPTIONS.
created the directory
/usr/local/openldap/etc/openldap/slapd.d/cn=config/olcDatabase= {1}sociale/olcOverlay={4}chain
There is no need to creat a subdirectory of etc/openldap/slapd.d/ [...]
-Dieter
Hi,
my definition of db is:
dn: olcDatabase={1}sociale objectClass: olcDatabaseConfig objectClass: olcBdbConfig objectClass: olcLDAPConfig olcDatabase: {1}bdb olcSuffix: dc=sociale,dc=it olcAddContentAcl: FALSE olcLastMod: TRUE olcMaxDerefDepth: 15 olcReadOnly: FALSE ..... .....
and it works and work all other Overlay, for example Unique Overlay I have imported with the following ldif file
dn: olcOverlay=unique,olcDatabase={1}sociale,cn=config objectClass: olcUniqueConfig olcOverlay: unique
Regards
Ing. Stefano Elmopi Cooperativa Capodarco - Resp. Area ICT Gestione Esercizio Via Ostiense 131/L Corpo B, 00154 Roma
cell. 3466147165 tel. 0657060500
email:stefano.elmopi@sociale.it
2014-12-02 13:57 GMT+01:00 Dieter Klünter dieter@dkluenter.de:
Am Tue, 2 Dec 2014 10:34:26 +0000 (UTC) schrieb Stefano stefano.elmopi@sociale.it:
Hi,
I state that I am a beginner to Ldap !!! I have a problem with the configuration of the Chain Overlay. Provider and Consumer are identical
CentOS release 6.5 openldap-servers-2.4.40-1.el6.x86_64
On the Consumer: I configured
olcPPolicyForwardUpdates=TRUE in the Ppolicy Overlay and olcUpdateRef: ldap://stfalf02devpom.sociale.it in the ldif file of Ldap DB
imported the ldif file:
dn: olcOverlay=chain,olcDatabase={1}sociale,cn=config objectClass: olcOverlayConfig objectClass: olcChainConfig olcOverlay: chain olcChainCacheURI: FALSE olcChainMaxReferralDepth: 1 olcChainReturnError: FALSE
There is no such thing as olcDatabase=sociale, the database should be of type as defined in slapd.conf(5), section GENRAL DATABASE OPTIONS.
created the directory
/usr/local/openldap/etc/openldap/slapd.d/cn=config/olcDatabase= {1}sociale/olcOverlay={4}chain
There is no need to creat a subdirectory of etc/openldap/slapd.d/ [...]
-Dieter
-- Dieter Klünter | Systemberatung http://sys4.de GPG Key ID: E9ED159B 53°37'09,95"N 10°08'02,42"E
"Elmopi, Stefano" stefano.elmopi@sociale.it wrote
my definition of db is:
dn: olcDatabase={1}sociale [..] olcDatabase: {1}bdb
Also wrong since the 'olcDatabase' values are not the same.
Ciao, Michael.
Michael Ströder wrote:
"Elmopi, Stefano" stefano.elmopi@sociale.it wrote
my definition of db is:
dn: olcDatabase={1}sociale [..] olcDatabase: {1}bdb
Also wrong since the 'olcDatabase' values are not the same.
Especially 'olcDatabase' has to contain the (numbered) name of a OpenLDAP backend.
Ciao, Michael.
dn: is the voice for the location in the tree.... while the second option is for the type of DB
ls -1 cn=config
cn=schema cn=schema.ldif olcDatabase={0}config.ldif olcDatabase={-1}frontend.ldif olcDatabase={1}sociale olcDatabase={1}sociale.ldif olcDatabase={2}monitor.ldif
all works....... also the configuration Provider-Consumer, what I can not do is configure the Chain Overlay !!!
Ing. Stefano Elmopi Cooperativa Capodarco - Resp. Area ICT Gestione Esercizio Via Ostiense 131/L Corpo B, 00154 Roma
cell. 3466147165 tel. 0657060500
email:stefano.elmopi@sociale.it
2014-12-02 18:01 GMT+01:00 Michael Ströder michael@stroeder.com:
Michael Ströder wrote:
"Elmopi, Stefano" stefano.elmopi@sociale.it wrote
my definition of db is:
dn: olcDatabase={1}sociale [..] olcDatabase: {1}bdb
Also wrong since the 'olcDatabase' values are not the same.
Especially 'olcDatabase' has to contain the (numbered) name of a OpenLDAP backend.
Ciao, Michael.
openldap-technical@openldap.org
-
Dieter Klünter -
Elmopi, Stefano -
Michael Ströder -
Stefano