Hi Holger,
your user needs manage rights on the config database to extend the
schema. This is in e.g.
/etc/ldap/slapd.d/cn=config/olcDatabase={0}config.ldif
olcDatabase: {0}config
olcAccess: {0}to * by dn.regex="uid=admin,ou=people,dc=....." manage by
* break
olcAccess: {0}to * by * read
Best regards
Roland
Am 06.11.20 um 07:23 schrieb Holger Biber:
Hi Roland,
thanks for your answer.
Yes, I know that my Ubuntus is a little bit to old, but for our
video conferencing tool (BigBlueButton) die "old" version is
necessary.
And yes again, I didn't look at the right place.
I've installed the Debian package (Pro version) and nearly everything
looks fine now.
"Nearly" because I've some difficulties to insert
"passwordSelfReset.ldif to my
(open-)LDAP.
When calling:
ldapadd -v -x -W -H ldap://ldap -D "uid=admin,ou=people,dc=....." -f
passwordSelfReset.ldif
(with "..." filled with the correct "dc" fields) I'll get:
ldap_initialize( ldap://ldap:389/??base )
Enter LDAP Password:
add objectClass:
olcSchemaConfig
add cn:
passwordSelfReset
add olcAttributeTypes:
( 1.3.6.1.4.1.34955.1.1 NAME 'passwordSelfResetQuestion' DESC
'Password self reset question' EQUALITY caseIgnoreMatch SUBSTR
caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE )
( 1.3.6.1.4.1.34955.1.2 NAME 'passwordSelfResetAnswer' DESC
'Password self reset answer' EQUALITY caseExactMatch SUBSTR
caseExactSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE )
( 1.3.6.1.4.1.34955.1.3 NAME 'passwordSelfResetBackupMail' DESC
'Backup email address' EQUALITY caseIgnoreIA5Match SUBSTR
caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
( 1.3.6.1.4.1.34955.1.4 NAME 'passwordSelfResetQuestion2' DESC
'Password self reset question 2' EQUALITY caseIgnoreMatch SUBSTR
caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE )
( 1.3.6.1.4.1.34955.1.5 NAME 'passwordSelfResetAnswer2' DESC
'Password self reset answer 2' EQUALITY caseExactMatch SUBSTR
caseExactSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE )
( 1.3.6.1.4.1.34955.1.6 NAME 'passwordSelfResetQuestion3' DESC
'Password self reset question 3' EQUALITY caseIgnoreMatch SUBSTR
caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE )
( 1.3.6.1.4.1.34955.1.7 NAME 'passwordSelfResetAnswer3' DESC
'Password self reset answer 3' EQUALITY caseExactMatch SUBSTR
caseExactSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE )
add olcObjectClasses:
( 1.3.6.1.4.1.34955.2.1 NAME 'passwordSelfReset' DESC 'Password
self reset with security question+answer' SUP top AUXILIARY MAY (
passwordSelfResetQuestion $ passwordSelfResetAnswer $
passwordSelfResetBackupMail $ passwordSelfResetQuestion2 $
passwordSelfResetAnswer2 $ passwordSelfResetQuestion3 $
passwordSelfResetAnswer3 ) )
adding new entry "cn=passwordSelfReset,cn=schema,cn=config"
ldap_add: Insufficient access (50)
I don't know why the last message "Insufficient access" appears, because
I've entered the correct root-password.
Now I'm im contact www.extis.de because the LDAP-Server is on an
OpenSchoolServer.
Using:
ldapadd -v -x -W -H ldap://ldap -D "cn=admin,dc=...." -f
passwordSelfReset.ldif
just ends in:
ldap_initialize( ldap://ldap:389/??base )
Enter LDAP Password:
ldap_bind: Invalid credentials (49)
But perhaps you'll have any solutions.
Bye and thanks again
Holger
Am 05.11.2020 um 21:44 schrieb Roland Gruber:
Hi Holger,
Am 04.11.20 um 22:25 schrieb Holger Biber:
version 5.2 is from December 2015. ;-)
I saw it in the repo-dir. But why isn't there an actual version?
looks like your Ubuntu is too old:
https://launchpad.net/ubuntu/+source/ldap-account-manager
Please install 7.3 as this is the only version that supports PHP 7.4.
OK, I will download the "Fedora-Package", or better the "*.tgz" (?)
from your homepage.
Please use the Debian package for Ubuntu.
Best regards
Roland
_______________________________________________
Lam-public mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/lam-public
_______________________________________________
Lam-public mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/lam-public
