LastBind feature

2024-02-08 Thread bourguijl
Dears, I'm running openldap 2.5.16 in which I'm using lastbind feature included in source. To enable it, I read that 2 attributs should be inserted in DB config file side, in which I added : olcLastBind: TRUE olcLastBindPrecision: 3600 But it seems that olcLastBindPrecision isn't supported

Re: olcLimits and groupOfURLs dynlist

2024-02-08 Thread Norman Gray
Howard, hello. On 8 Feb 2024, at 0:34, Howard Chu wrote: >> 65c3df21.21fc2a30 0x16cacf000 >> ldap_url_parse_ext(ldap:///ou=groups,o=example?member?sub?(|(cn=ldap-admins-*)(cn=ldap-techs))) > > The above URL is not valid for a dynamic group. The attrs portion of the URL > must be empty. > >

Re: olcLimits and groupOfURLs dynlist

2024-02-08 Thread Howard Chu
Norman Gray wrote: > > Howard, hello. > > On 8 Feb 2024, at 0:34, Howard Chu wrote: > >>> 65c3df21.21fc2a30 0x16cacf000 >>> ldap_url_parse_ext(ldap:///ou=groups,o=example?member?sub?(|(cn=ldap-admins-*)(cn=ldap-techs))) >> >> The above URL is not valid for a dynamic group. The attrs portion of

Re: openldap.log file location on Windows environment

2024-02-08 Thread mbalakri
Thanks, it is working after adding olcLogFile configuration.

Re: Openldap 2.4 -> Openldap 2.6.3 replication hurdles

2024-02-08 Thread Quanah Gibson-Mount
--On Thursday, January 25, 2024 9:48 AM +0200 Viktor Keremedchiev wrote: If I use olcServerID: 1 ldaps://prod-ldap1.domain.com - server doesn't start post ldapmodify. Sounds like this doesn't match the options passed to slapd at startup. I do note your missing a port at the end of the

Re: olcLimits and groupOfURLs dynlist

2024-02-08 Thread Norman Gray
Howard, hello. On 8 Feb 2024, at 15:07, Howard Chu wrote: >> Norman Gray wrote: >> >> Howard, hello. >> >> On 8 Feb 2024, at 0:34, Howard Chu wrote: >> >>> 65c3df21.21fc2a30 0x16cacf000 >>> ldap_url_parse_ext(ldap:///ou=groups,o=example?member?sub?(|(cn=ldap-admins-*)(cn=ldap-techs))) >>> >>>

Re: olcLimits and groupOfURLs dynlist

2024-02-08 Thread Howard Chu
Norman Gray wrote: > > Howard, hello. > > On 8 Feb 2024, at 15:07, Howard Chu wrote: > >>> Norman Gray wrote: >>> >>> Howard, hello. >>> >>> On 8 Feb 2024, at 0:34, Howard Chu wrote: >>> 65c3df21.21fc2a30 0x16cacf000

Re: olcLimits and groupOfURLs dynlist

2024-02-08 Thread Norman Gray
Howard, hello. On 8 Feb 2024, at 16:22, Howard Chu wrote: >> And slapo-dynlist says: >> >> Any time an entry with a specific objectClass is being returned, >> the LDAP URI-valued occurrences of a specific attribute are expanded >> into the corresponding entries, and the values of the

Re: LastBind feature

2024-02-08 Thread Abdelkader Chelouah
On 2/8/24 14:39, bourgu...@gmail.com wrote: Dears, I'm running openldap 2.5.16 in which I'm using lastbind feature included in source. To enable it, I read that 2 attributs should be inserted in DB config file side, in which I added : olcLastBind: TRUE olcLastBindPrecision: 3600 But it

Re: LastBind feature

2024-02-08 Thread Abdelkader Chelouah
The attribute *olcLastBindPrecisio**n* is not available for OpenLDAP 2.5, *pwdLastSuccess* is updated whenever a BIND operation is successful. Regards On 2/8/24 14:57, Jean-Luc Bourguignon wrote: Hello, Thx for your answer. I did not pay attention it was for 2.6x but why it’s working in

All LDAP content is not replicating to Node2 with replication message 'not new enough, ignored'

2024-02-08 Thread mbalakri
Hello, We need some help to resolve the intermittent sync replication issue. We have configured mirror mode replication with two nodes. Node1 syncrepl {0}rid=1 provider=ldaps://AWPCISQL22.otxlab.net:6366 type=refreshAndPersist searchbase="o=otxlab.net" schemachecking=off bindmethod=simple