Re: debugging memberOf overlay

[c0re]

2010/12/9 c0re <nr1c...@gmail.com>:
> 2010/12/9 c0re <nr1c...@gmail.com>:
>> Hello all!
>>
>> Trying to get memberOf overlay working.
>>
>> Added to slapd.conf "overlay memberof"
>>
>> Restarted slapd.
>>
>> Checked that overlay loaded
>>
>>
>> # slaptest -d 1
>> .............
>> config_build_entry: "olcOverlay={1}memberof"
>> .............
>>
>>
>> Then added 1 user and 2 groups via ldif:
>>
>>
>> dn: cn=test,ou=users,dc=domain,dc=local
>> sn: test
>> cn: test
>> uid: test
>> objectClass: inetOrgPerson
>> objectClass: top
>> objectClass: person
>> objectClass: posixAccount
>> objectClass: shadowAccount
>> objectClass: radiusprofile
>> uidNumber: 5555
>> gidNumber: 5555
>> homeDirectory: /home/test
>> givenName: test
>> loginShell: /bin/sh
>> shadowMin: 0
>> shadowMax: 999
>> shadowWarning: 7
>> shadowInactive: -1
>> shadowExpire: 0
>> shadowFlag: 0
>> dialupAccess: yes
>>
>>
>> dn: cn=testgroup,ou=servers,dc=domain,dc=local
>> objectclass: groupOfNames
>> cn: testgroup
>> member: cn=test,ou=users,dc=domain,dc=local
>>
>> dn: cn=maingroup,ou=servers,dc=domain,dc=local
>> objectclass: groupOfNames
>> cn: maingroup
>> member: cn=testgroup,ou=servers,dc=domain,dc=local
>>
>> And made
>>
>> # ldapsearch -x -D "cn=admin,dc=domain,dc=local" -b
>> "dc=domain,dc=local" -W "(cn=test)" memberOf
>>
>> # extended LDIF
>> #
>> # LDAPv3
>> # base <dc=domain,dc=local> with scope subtree
>> # filter: (cn=test)
>> # requesting: memberOf
>> #
>>
>> # test, users, domain.local
>> dn: cn=test,ou=users,dc=domain,dc=local
>>
>> # search result
>> search: 2
>> result: 0 Success
>>
>> # numResponses: 2
>> # numEntries: 1
>>
>>
>> As you see - no memberOf in users attrs.
>>
>> I got no ideas why...
>>
>> By that I wanted to test output of ldapsearch to check will there be
>> two or one memberOf attrs.
>>
>> Thanks!
>>
>
> openldap 2.4.23
>

Sorry, it's working. Just needed to remake member attr in group.
But nested groups recursively not working in memberOf overlay. :(