and the ldap debugging log says ...
connection_get(13)
SRCH "CN=UnicibleRootCA,OU=ITSecurity,dc=unicible, dc=CH" 0 2 0 0 0
begin get_filter
EQUALITY
end get_filter 0
filter: (objectClass=subschema)
attrs: objectClasses attributeTypes matchingRules matchingRuleUse dITStructureRules dITContentRules nameForms ldapSyntaxes
send_ldap_result: err=10 matched="ou=ITSecurity,dc=unicible,dc=CH" text=""
ber_flush: 45 bytes to sd 13
connection_get(13)
do_add: dn (cn=UnicibleRootCA,ou=ITSecurity,dc=unicible,dc=CH)
send_ldap_result: err=65 matched="" text="invalid structural object class chain (organizationalRole/person)"
ber_flush: 79 bytes to sd 13
connection_get(13)
...
Hey, this is a really good observation. My openldap-server ignores the chain - also if schema-checking is on! I will check the ldap code tomorrow or on friday. It looks like my LDAP server is a little bit too lax.
Thanks for the good feedback
Michael
P.S. perhaps this is the problem of Pramila too. -- ------------------------------------------------------------------- Michael Bell Email: [EMAIL PROTECTED] ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482 (Computing Centre) Fax: +49 (0)30-2093 2704 Humboldt-University of Berlin Unter den Linden 6 10099 Berlin Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
------------------------------------------------------- This SF.net email is sponsored by: ObjectStore. If flattening out C++ or Java code to make your application fit in a relational database is painful, don't do it! Check out ObjectStore. Now part of Progress Software. http://www.objectstore.net/sourceforge _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
