on the deprecated API would be at least
inefficient. It would be much wiser to do the sorting at the client's
side, after extracting data from the LDAP results. And the PHP
interface should deprecate those functions as well.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e
,dc=foo,dc=com
attrs=entry,objectClass val.regex=objvalue1|objvalue2,attr1,attr2
by who what
No. When val=... is used, only one attr must appear in the list.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
On 10/14/2014 09:35 AM, Pierangelo Masarati wrote:
On 10/14/2014 09:03 AM, Nikos Voutsinas wrote:
Hi all,
Although I suspect what the answer would be, I thought It might be a
good idea to confirm with the list.
Is the following attrlist clause in OpenLdap's ACLs syntax valid;
attr1 [val
the faq
http://www.openldap.org/faq/data/cache/1.html accordingly.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
On 06/06/2014 12:20 PM, Charles Bueche wrote:
On 05.06.14 20:44, Pierangelo Masarati wrote:
On 06/05/2014 01:54 PM, Charles Bueche wrote:
On 04.06.14 15:14, Charles Bueche wrote:
On 03.06.14 16:52, Pierangelo Masarati wrote:
On 06/03/2014 04:23 PM, Charles Bueche wrote:
Hi,
I'm running
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
From: openldap-technical-boun...@openldap.org
[openldap-technical-boun...@openldap.org] on behalf of Michael Ströder
[mich...@stroeder.com
On 06/05/2014 01:54 PM, Charles Bueche wrote:
On 04.06.14 15:14, Charles Bueche wrote:
On 03.06.14 16:52, Pierangelo Masarati wrote:
On 06/03/2014 04:23 PM, Charles Bueche wrote:
Hi,
I'm running the latest openldap stable 2.4.39 on Ubuntu.
My openldap server is configured as a LDAP proxy
, slapd should not worry about it; however, AFAIK there's
no way, so far, to disable such check. The easiest way is to define a
module that registers a dummy matching rule with that OID, although it
won't likely be that straightforward.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di
/draft-ietf-ldapext-acl-model-08
you may as well read http://www.openldap.org/faq/data/cache/634.html
-Dieter
--
Dieter Klünter | Systemberatung
http://sys4.de
GPG Key ID: E9ED159B
53°37'09,95N
10°08'02,42E
--
Pierangelo Masarati
Associate Professor
build completes:
cd tests/
./run test041
does it pass?
Note that aci is not a valid attribute name; OpenLDAPaci is the right
name.
p.
Regards
Regards
On Thu, May 15, 2014 at 11:02 PM, Pierangelo Masarati
pierangelo.masar...@polimi.it mailto:pierangelo.masar...@polimi.it
wrote:
On 05/15
]
Specify general extensions with -e and search
extensions with
-E. ´!´ indicates criticality.
Ciao, Michael.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
=config
dn: cn={3}inetorgperson,cn=schema,cn=config
dn: olcBackend={0}hdb,cn=config
dn: olcDatabase={-1}frontend,cn=config
dn: olcDatabase={0}config,cn=config
dn: olcDatabase={1}hdb,cn=config
$ sudo ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// dn
No such object (32)
--
Pierangelo Masarati
of an LDAP URI. Entries
matching the URI are collected into a set and subsequently used in sets
algebra. In any case, sets are only used in the context of ACL evaluation.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
); /* try unbind the failed connection anyway */
exit ( 1 );
}
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
sets even less performing, but this is something sets users
already must take into account.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
notify the
sender immediately [by clicking 'Reply'] and delete this e-mail.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
that uses this (Samba4
doesn't support OpenLDAP if I understand correctly).
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
to *
by * read
(I didn't feel like populating the database with homeDirectory and so),
and it worked: users were able to add/delete /bin/bash, but not
/bin/fsh.
Glad you found a workaround, though.
p.
Thanks,
Mark
--
Pierangelo Masarati
Associate Professor
Dipartimento di
-
add: homeDirectory
homeDirectory: /bin/csh
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
right? ;)
http://en.wikipedia.org/wiki/65535_%28number%29
This is indeed a BDB bit.
65536 (1 16) is the threshold at which index lists are turned into
ranges; perhaps this has to do with what you see.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie
be all on
one line, and that is why it is wrong. formatting in this message may
change the way it looks.)
the error i get is:
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
this:
olcAuthzRegexp: {0}uid=([^,]*)(,cn=bpk2.com)?,cn=gssapi,cn=auth
uid=$1,ou=Users,dc=bpk2,dc=com
p.
thank you for the help
On Sat, 2013-06-08 at 17:22 +0200, Pierangelo Masarati wrote:
On 06/08/2013 04:40 PM, Brendan Kearney wrote:
Sent to early, sorry...
I get the error:
ldapmodify: extra lines at end
Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
is not defined in any of OpenLDAP's distributed
schema files, nor hardcoded anywhere. OpenLDAP does strong schema
adherence checks, so it is not possible to add a DN made of undefined
attributes.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
-Ursprüngliche Nachricht-
Von: openldap-technical-boun...@openldap.org
[mailto:openldap-technical-boun...@openldap.org] Im Auftrag von Pierangelo
Masarati
Gesendet: Donnerstag, 23. Mai 2013 10:59
An: openldap-technical@openldap.org
Betreff: Re: Invalid manager attribute when in form
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
this
yourself.
p.
Le 15/05/2013 22:20, Pierangelo Masarati a écrit :
binddn and bindpw are the first two parameters of the perl function
called for binds.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
-include dn.regex=^uid=[0-9]+1,ou=rsp1,c=de,o=mno$
uri ldap://10.11.12.190/ou=rsp1,c=de,o=mno;
subtree-include dn.regex=^uid=[0-9]+2,ou=rsp1,c=de,o=mno$
and so on.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
, ldap_entries.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
constraint_attribute mail regex ^[^@]+@[a-z0-9\-]+(\\.[a-z0-9\-]+)*$
passes '^[^@]+@[a-z0-9-]+(\.[a-z0-9-]+)*$' to the regex parser.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
''
ssh-rsa B3NzaC
likely there is something in the key that makes ldapsearch present in
b64-encoded (likely a trailing space?)
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Scienze e Tecnologie Aerospaziali
Politecnico di Milano
IMO this example clearly shows that the {} approach is a hack limited to
certain use-cases (e.g. ACLs etc. in back-config).
Perhaps valsort could return weights instead of stripping them off when
the RFC 3296 manageDSAit control is used.
p.
--
Pierangelo Masarati
Associate Professor
the attribute, unless that
information has been stored somewhere else)
To perform a search that returns the weighted values the control
LDAP_CONTROL_VALSORT (1.3.6.1.4.1.4203.666.5.14) must be specified.
That's not documented in slapo-valsort(5), as far as I know.
p.
--
Pierangelo Masarati
Associate
database is effectively
cn=monitor.
The suffix of cn=monitor is indeed cn=monitor, and is hardcoded.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
-meta(5). I suggest you file an ITS http://www.openldap.org/its.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
risk in doing so?
man slapd.access(5):
[...]
The search operation, requires search (=s) privileges on the entry
pseudo-attribute of the searchBase (NOTE: this was introduced with
OpenLDAP 2.4).
[...]
p.
Thank you.
--
Regards,
Sachin Divekar
--
Pierangelo Masarati
Associate
could know about it (patches
are welcome); in any case, I think point (1) still applies; assuming the
behavior your desire is legitimate, whether it takes place or not should
be at least configurable, as there are many good reasons for (1) to be
available.
p.
--
Pierangelo Masarati
Associate
/202020/303030. Then the
problem is: would a dumb client be configurable in such a manner that it
can be instructed to show the custom attribute instead of telephoneNumber?
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
synchronization tools, and just cranked up a new database with
that content.
That's exactly what one is expected to do.
If you find a solution that works reliably, I'm all ears.
RTFM? p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
to openldap - I want to bind with the supplied credential that are
supplied to openldap from the client
Does that make sense ?
Thanks
Alex
-Original Message-
From: Pierangelo Masarati [mailto:masar...@aero.polimi.it]
Sent: Friday, 23 November 2012 8:30 AM
To: Alex Samad - Yieldbroker
Cc
Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
)
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
?
You need to use
add_content_acl on
See slapd.access(5) for add operation requirements and slapd.conf(5) (or
slapd.config(5)) for details on add_content_acl.
p.
Thanks again!
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
On 08/23/2012 11:00 AM, Liam Gretton wrote:
On 22/08/2012 22:14, Pierangelo Masarati wrote:
But what's the point of specifying multiple targets in the uri
option if it doesn't fall through to subsequent ones when the first
is not contactable?
Have I completely missed the point
On 14/08/2012 14:52, masar...@aero.polimi.it wrote:
You are. The above is creating three targets, one pointing to host1,
one
pointing to host2 and one pointing to host3. The rest of the
configuration is associated to the last target, the others are sort of
dangling. A correct
On 14/08/2012 15:28, masar...@aero.polimi.it wrote:
On 14/08/2012 14:52, masar...@aero.polimi.it wrote:
You are. The above is creating three targets, one pointing to host1,
one
pointing to host2 and one pointing to host3. The rest of the
configuration is associated to the last target, the
On 14/08/2012 16:06, masar...@aero.polimi.it wrote:
If I wasn't clear, I changed the config as you suggested. The debug
output I posted was from that configuration. The server never attempts
to contact anything other than host1.
Did you try stopping host1 in between client operations? I
On 14/08/2012 17:18, masar...@aero.polimi.it wrote:
If I remove host1 after the LDAP server has started, the debug
output is at least different. It's attempting to contact host1,
failing, doubling the timeout and trying again continuously, never
attempting to try host2 or host3.
The
List,
I'm setting up chaining. And I want to get errors, no referrals :)
my olcDatabase looks like this:
olcDatabase={0}ldap,olcOverlay={1}chain,olcDatabase={1}hdb,cn=config
objectClass: olcChainDatabase (auxiliary)
objectClass: olcConfig (abstract)
objectClass: olcDatabaseConfig
Howard Chu wrote:
Michael Ströder wrote:
Quanah Gibson-Mount wrote:
If you know how to build OpenLDAP manually, and would like to
participate in
testing the next set of code for the 2.4.31 release, please do so.
I currently see two strange effects:
1. When trying to add an entry which
Michael Ströder wrote:
masar...@aero.polimi.it wrote:
Obviously an instance of slapo-accesslog(5) is involved (code related
to
adding reqEntryUUID to an entry). Can you be more specific about the
sequence of databases and overlays and related configuration?
Disabling accesslog indeed
overlay accesslog
logdb cn=accesslog
logops writes extended
Another question: it this reproducible with master code?
p.
overlay accesslog
logdb cn=accesslog
logops writes extended
The original issue should be fixed now in master.
Maybe related to ITS#7239?
Maybe the fix also addresses this issue. The problem was related to the
use of an uninitialized pointer in a circumstance that could not occur
when
[please keep replies on the list]
IŽm sorry, but that is not a qualified answer...
OK, I'll try to be more precise.
1) TelUser: not a standard track attribute. Please provide its
specification (significantly, its syntax) otherwise the point is moot.
2) few standard track syntaxes allow zero
Hello list.
I have some questions about defining overlays on the frontend
database. Documentation (manual pages) is not very consistent
about it:
slapd.overlays
| Most of the overlays are only allowed to be configured on
| individual databases, but some may also be configured
|
Hello,
to fill data into an LDAP-structure, I use the software HP Connect IT.
Sometimes it is necessary to clear an attribute.
But there is the following error message:
Error occured while modifiying the entry (LDAP)
TelUser value #0 invalid per Syntax
LDAP API Invalid Syntax
Can you
I'm sorry, I send my issue to the wrong mailinglist at first (to the
bugs list) and then tried to send it to technical twice. It doesnt
seem to go through. Do you have any idea which column it is that
defines this behaviour? I can't seem to find it..
It is not a boolean, but rather a separate
I suggest you file an ITS http://www.openldap.org/its/, and try the
attached patch.
p.diff --git a/servers/slapd/back-sql/search.c b/servers/slapd/back-sql/search.c
index cadd036..92d3f82 100644
--- a/servers/slapd/back-sql/search.c
+++ b/servers/slapd/back-sql/search.c
@@ -325,7 +325,7 @@
Hi guys,
Despite the manuals reading you claim, I see many unrelated errors in your
configuration/operations.
Posted a while back but didn't get far, just trying again to see if I can
get this working. We have AD on our DC server, working fine, and a list of
external clients in OpenLDAP,
Hi
Just wondering if the features is supposed to work ? Am I delving into
experimental code ?
It works as intended. The error message you receive is quite
self-explanatory: AD wants a successful bind, and you're requesting
bindmethod=none (i.e. bind with empty DN). You may want to try
openldap 2.3 latest
the dynlist feature works when I change the database backend from ldap
to a bdb backend replica of the master. That's unfortunate, I'd like
to not have to replicate the data to my local ldap box.
slapo-dynlist(5) works as expected (in 2.4) with slapd-ldap(5) as the
HI!
Is it possible to specify the what clause in an ACL with a set?
No.
We have several applications and for each application there's a specific
AUXILIARY object class for application-specific user attributes.
So for each application I add ACLs like this:
access to
masar...@aero.polimi.it wrote:
Is it possible to specify thewhat clause in an ACL with a set?
No.
We have several applications and for each application there's a
specific
AUXILIARY object class for application-specific user attributes.
So for each application I add ACLs like this:
.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
On 02/07/2012 12:57 PM, Alfie John wrote:
On Tue, Feb 7, 2012, at 09:14 AM, Pierangelo Masarati wrote:
In addition, I suggest you check whether the problem persists with the
latest release; in case, please file an ITS following instructions here
http://www.openldap.org/faq/data/cache/56.html
.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
On 01/20/2012 12:19 PM, Michael Ströder wrote:
Pierangelo Masarati wrote:
On 01/20/2012 06:49 AM, Mathieu MILLET wrote:
I could see a 3rd use case : User management.
When you administer the profile of a user, you simply query the LDAP
entry of the user and you get all of his information
Is it possible to allow access to a specific dn only by a specific client
IP address?
ie:
access to dn.exact=ou=domain,ou=raincoatcompany.com
by clientIP=200.200.0.117 read
Yes. See peername who clause in slapd.access(5).
p.
Hi, all,
I'm trying to understand the internal workflow of the attribute type
checking and syntax validation in OpenLDAP. For example, if I use an
attribute whose syntax is not implemented like presentationAddress, the
log message no validator for syntax will occur.
I trace this message in
and loaded run-time.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
Hi,
I have a meta DB pointing to an Active Directory backend. This is used by
SASL for authentication.
The meta DB does not contain a schema definition for the AD.
I've configured SASL to lookup sAMAccountName in AD, but this always fails
until a lookup against the meta DB has first been
Is the ppolicy control supported by the command-line tools if SASL is
used?
It seems I would have to use ldap_sasl_interactive_bind() like done in
./servers/slapd/back-ldap/bind.c:1448
Sorry, my fault: I was looking at HEAD code, where the client tool uses
ldap_sasl_interactive_bind()
Hello,
the slapd-meta backend (OpenLDAP version: 2.4.26 and 2.4.28) has an own
rewriting module. If I want to use rewriting and remaping, do I have to
install rwm-overlay although I have meta installed?
not sure what you mean by installed; if you mean loaded when built as
run-time loadable
HI!
Disclaimer: I'm not a C programmer.
I'd like to evaluate response controls (e.g. ppolicy) also when doing a
SASL
bind. I'm using python-ldap which in turn uses OpenLDAP C API's function
ldap_sasl_interactive_bind_s(). But currently there's no way to extract
the
server's response
Hi,
I tried the method suggested by Marco to populate memberOf attributes of
existing entries:
How would you recommend getting memberof values populated in the
existing directory?
If you can afford a sequence of:
stop - slapcat - drop db - slapadd
Everything gets populated as desired.
Hi all
I have reproduced the same behaviour with 2.4.28 on Linux and Solaris.
Any chance this is a recursion/bug?
The limits statement is database-specific; where did you put it in
slapd.conf? It must be within the database it applies to.
p.
krgds /markus
On 11/24/11 21:23, Markus
.
You could have multiple accesslogs, or you could only check entries that
are newer than the last time the daemon ran (e.g. by filtering for
operation type and contextCSN).
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
[I tried searching the docs for the answer without much luck, so
apologies if I've missed it]
Does openldap (2.4.26) support DNs containing utf8 multi-byte
characters?
e.g. a DN containing é like cn=été,dc=a,dc=b ?
If not, what's the recommended way of handling such DNs?
Chris
Take a
for validation and normalization, if
required. It's not a big deal as soon as the specification is available
(and doable), but that's another business.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
quick for me to catch up :) I think mmdb sounds fine.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
overlays.
These issues definitely ought to be considered.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
permitting, I think adding support for assertion, pre/post-read and
so would be extremely useful; I'd like to work at it.
p.
--
Pierangelo Masarati
Associate Professor
Dipartimento di Ingegneria Aerospaziale
Politecnico di Milano
Michael Ströder wrote:
Does back-config support the Post Read Control? That would be handy for
retrieving the renumbered DN after an Add or Modify request.
Hmm, experiments shows that this does work. Server returns:
Critical extension is unavailable: critical control unavailable in
context
Hello everyone,
As mentioned before, I'm working on an overlay. And, I need to retrieve
all
the attributes send with the search request.
Here is a part of my source:
AttributeDescription* patt = op-oq_search.rs_attrs-an_desc;
while(patt != NULL)
{
fprintf(fdebug,
Jeffrey Crawford wrote:
Hello anyone ;)
I came across this where the state of the rwm overlay was being
discussed. There seemed to be some indication that the state of both
slapd-relay and slapo-rwm should no longer be listed as experimental:
On 09/27/2011 06:59 PM, Michael Ströder wrote:
HI!
We have {SSHA}-hashed passwords in attribute userPassword.
One application sends CompareRequests with the clear-text password instead of
a BindRequest to validate the password which obviously fails. The application
vendor claims it is too much
I have added the line you suggested and now I have No database selected
mysql error
I have run isql -v MySQL ldap ldap and it works...
[root@server ~]# isql -v MySQL ldap ldap
+---+
| Connected!|
|
Hi all,
I am using OpenLDAP with MySQL backend for testing purpose, a future
project
of linux authentication via LDAP but with MySQL backend.
Did you check slapd-sql(5) and the example slapd.conf(5) for mysql that is
distributed with the package in
On 09/21/2011 05:48 PM, David Dumortier wrote:
Hello,
I tried to set a password with the -T option.
It failed so I tried -d 11 to see the dump in hexa.
I discovered that a 0xa is append to the password.
Is it a bug ? if so please confirm I will open a bugreport.
slappasswd hashes the contents
On 09/19/2011 09:48 AM, tu...@bayour.com wrote:
I'm trying to use pcache on my server, but it crashes every time it gets a
'QUERY CACHABLE'...
See my config in my other thread...
What other thread? Please, always provide a link to the archives, to
help others help you.
This is a localy
On 09/12/2011 07:15 AM, sim123 wrote:
On Sun, Sep 11, 2011 at 9:46 PM, sim123sim3...@gmail.com wrote:
On Fri, Sep 9, 2011 at 11:57 AM, sim123sim3...@gmail.com wrote:
Hi All,
I want third party applications to authenticate against my ldap using any
attribute (specially mail password) is
You didn't try all combinations of parameters, you need to be exhaustive
when doing trial and error, otherwise there is no guarantee you get to the
right combination in a finite amount of time. Or, you can read RFC4511
and find out how to do things right the first time.
p.
Hi thanks for the
On 09/08/2011 03:08 PM, Peter Marschall wrote:
Hi,
On Wednesday, 7. September 2011, Quanah Gibson-Mount wrote:
Is it valid to inherit from two different structural objectClasses? I
don't believe so.
Works for me with OpenLDAP 2.6.25 (and did so since the 2.[23].x days)
See also
On Sep 8, 2011, at 11:26 AM, Michael Ströder wrote:
Marco Schirrmeister wrote:
On Sep 7, 2011, at 3:56 PM, Pierangelo Masarati wrote:
Or, to use the relax control draft-zeilenga-ldap-relax;
That sounds interesting and I just tried that on my lab env. It was not
working.
The error
If this happened with OpenLDAP 2.4.26 you should file an ITS; otherwise
I
suggest you upgrade, since I recall some recent changes in this area,
including fixing memory-related issues.
Yes, it is a 2.4.26 rpm on a 64bit CentOS 6.
I will try so see if I get more info with gdb before I file an
On 09/07/2011 10:10 AM, vijay s sheelavantar wrote:
Hi,I am trying to configure and compile the pam_ldap and nss_ldap for MIPS
architecture. for this they need ldap library. so I am trying to compile
openldap code for MIPS first, but the configuration is failing.
The command and options used
On 09/07/2011 02:44 PM, Marco Schirrmeister wrote:
On Sep 7, 2011, at 2:26 PM, Mi wrote:
I am trying to add the inetOrgPerson objectClass, but some users already have the
account objectClass.
After a long search, I found that you cannot have both. So I am trying to remove
account, and add
1 - 100 of 250 matches
Mail list logo