Re: Unable to delete root entry

2021-04-26 Thread Quanah Gibson-Mount 




--On Tuesday, April 27, 2021 12:47 AM +0300 Николай Данилов 
 wrote:



However, is it already fixed in the source code?
https://github.com/openldap/openldap/commit/0c90b8c0011fdb80fc2f8a2d7192f
8b40217c7e3


Yep.  If you build your own software, you should be able to backport it 
just fine.


--Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:

Re: Unable to delete root entry

2021-04-26 Thread Quanah Gibson-Mount 




--On Monday, April 26, 2021 11:56 PM +0300 Николай Данилов 
 wrote:



I will deal with the docker options. Is it possible to resolve the issue
of removing the root record using standard openldap tools?


No, it's a bug in the backend database.  You could do what Howard said via 
ldapmodify as a runtime alternative.


--Quanah

--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:

Re: Unable to delete root entry

2021-04-26 Thread Quanah Gibson-Mount 




--On Monday, April 26, 2021 11:39 PM +0300 Николай Данилов 
 wrote:



I tried the option with deleting mdb files the day before yesterday. It
really works. However, we need to bring up the openldap service with
replication in the k8s cluster. Therefore, low-level operations are
unacceptable.


Creating a default database is a function of how debian does the packaging. 
I believe there's an option you can pass to have it not do that.


--Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:

Re: Unable to delete root entry

2021-04-26 Thread Howard Chu 
Quanah Gibson-Mount wrote:
> 
> 
> --On Monday, April 26, 2021 10:46 AM -0700 Quanah Gibson-Mount 
>  wrote:
> 
>>
>>
>> --On Saturday, April 24, 2021 11:04 PM +0300 Николай
>> Данилов  wrote:
>>
>>> When installing openldap with database mdb, root entry cannot be deleted.
>>
>> This is a bug with back-mdb that was not present with back-bdb/hdb.  When
>> you originally opened your issue in the bug tracker, you said you
>> couldn't delete the rootDSE, which would be correct.  This is an issue
>> with deleting the root of the database DIT, which is different.
> 
> As a workaround, you can stop slapd and delete the database files (data.mdb, 
> lock.mdb) in your configured path for where they are stored for that specific
> database.

No need to stop slapd - just change the directory path in cn=config to point
to a new location. Then delete the old files.
> 
> Then add your new set of objects.

-- 
  -- Howard Chu
  CTO, Symas Corp.   http://www.symas.com
  Director, Highland Sun http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

Re: Unable to delete root entry

2021-04-26 Thread Quanah Gibson-Mount 




--On Monday, April 26, 2021 10:46 AM -0700 Quanah Gibson-Mount 
 wrote:





--On Saturday, April 24, 2021 11:04 PM +0300 Николай
Данилов  wrote:


When installing openldap with database mdb, root entry cannot be deleted.


This is a bug with back-mdb that was not present with back-bdb/hdb.  When
you originally opened your issue in the bug tracker, you said you
couldn't delete the rootDSE, which would be correct.  This is an issue
with deleting the root of the database DIT, which is different.


As a workaround, you can stop slapd and delete the database files 
(data.mdb, lock.mdb) in your configured path for where they are stored for 
that specific database.


Then add your new set of objects.

Regards,
Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:

Re: Unable to delete root entry

2021-04-26 Thread Quanah Gibson-Mount 




--On Saturday, April 24, 2021 11:04 PM +0300 Николай Данилов 
 wrote:



When installing openldap with database mdb, root entry cannot be deleted.


This is a bug with back-mdb that was not present with back-bdb/hdb.  When 
you originally opened your issue in the bug tracker, you said you couldn't 
delete the rootDSE, which would be correct.  This is an issue with deleting 
the root of the database DIT, which is different.


Regards,
Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP: