Re: BDB corruption on windows port of 2.2.19

--On Friday, July 22, 2005 4:42 PM -0700 Safdar Kureishy <[EMAIL PROTECTED]> wrote: My usage pattern is as follows: - At install time, the installer for our product sets up OpenLDAP and imports some seed data into it (using slapadd), under a specific base dn. This imported data (LDIF file)

Re: Duplicate attributeType: "2.5.4.13"

Samuel Tran wrote: Hi All, I am currently testing OpenLDAP 2.3.4. After successfully building it I am now trying to configure slapd using the new style (http://www.openldap.org/doc/admin23/slapdconf2.html). However when I try to run: /usr/local/libexec/slapd -f /etc/openldap/slapd.conf -F

Re: BDB corruption on windows port of 2.2.19

Thanks for the info Quanah. Would you know where I could get the windows ports for these versions you listed? I will try them all out then with my OpenLDAP server (btw, it's OpenLDAP version 2.2.19 that I'm using). Thanks, Safdar On 7/22/05, Quanah Gibson-Mount <[EMAIL PROTECTED]> wrote: > > >

Re: BDB corruption on windows port of 2.2.19

That's fine - please ignore my previous message. I just downloaded 4.3.28 (windows installation) from sleepycat.com and it worked. Now I'm going to try corrupting my database and see if the tool recovers it. :) Cheers, Safdar On 7/22/05, Safdar Kureishy <[EMAIL PROTECTED]> wrote: > Thanks for the

Duplicate attributeType: "2.5.4.13"

Hi All, I am currently testing OpenLDAP 2.3.4. After successfully building it I am now trying to configure slapd using the new style (http://www.openldap.org/doc/admin23/slapdconf2.html). However when I try to run: /usr/local/libexec/slapd -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d I g

Re: BDB corruption on windows port of 2.2.19

You mention below that a proper bdb configuration should prevent the corruption incident from happening. Would you be able to recommend a bdb configuration (via slapd.conf) that I could use? I tried adding "checkpoint 0 1" in my slapd.conf file but the data corruption is still reproducible reliably

RE: BDB corruption on windows port of 2.2.19

[...] > The BDB version of my openldap installation is 4.3.21. Since I got the > db_recover.exe file from a different website (No, it didn't come with > the windows installation of OpenLDAP that I downloaded from > http://download.bergmans.us/openldap/openldap-2.2.19/) it was probably > not the ri

Re: BDB corruption on windows port of 2.2.19

--On Friday, July 22, 2005 12:59 PM -0700 Safdar Kureishy <[EMAIL PROTECTED]> wrote: Thanks Quanah, Howard. The BDB version of my openldap installation is 4.3.21. Since I got the db_recover.exe file from a different website (No, it didn't come with the windows installation of OpenLDAP that

Re: olcDbConfig not correctly populating DB_CONFIG file

--On Friday, July 22, 2005 3:37 PM -0400 Dusty Doris <[EMAIL PROTECTED]> wrote: As I recall, there is already an ITS filed on this that has been fixed in HEAD. At this point, I suggest testing against HEAD or RE_23 rather than using 2.3.4, as many changes have happened since 2.3.4. I also

Re: BDB corruption on windows port of 2.2.19

Thanks Quanah, Howard. The BDB version of my openldap installation is 4.3.21. Since I got the db_recover.exe file from a different website (No, it didn't come with the windows installation of OpenLDAP that I downloaded from http://download.bergmans.us/openldap/openldap-2.2.19/) it was probably not

Access rights for a group member

Hi, I'm trying to set access rights so that a group member can see himself as a member of a group but not the other members. For example : dn: cn=group1,[...] cn: group1 member: uid=user1,[...] member: uid=user2,[...] objectClass: groupOfNames owner: uid=user3,[...] if user1 searches for "cn

Re: olcDbConfig not correctly populating DB_CONFIG file

> > As I recall, there is already an ITS filed on this that has been fixed in > HEAD. At this point, I suggest testing against HEAD or RE_23 rather than > using 2.3.4, as many changes have happened since 2.3.4. > > I also note that BDB 4.2.52+patches remains the preferred BDB version to > use with

Re: BDB corruption on windows port of 2.2.19

Safdar Kureishy wrote: Thanks for the information Matthew. I had a follow-up question. I obtained a windows version of db_recover online (since it did not come packaged with the windows OpenLDAP installation). There is a var\openldap-data folder under OpenLDAP under which I have these db files:

Re: BDB corruption on windows port of 2.2.19

--On Friday, July 22, 2005 11:10 AM -0700 Safdar Kureishy <[EMAIL PROTECTED]> wrote: Thanks for the information Matthew. I had a follow-up question. I obtained a windows version of db_recover online (since it did not come packaged with the windows OpenLDAP installation). There is a var\open

Re: olcDbConfig not correctly populating DB_CONFIG file

--On Friday, July 22, 2005 2:47 PM -0400 Dusty Doris <[EMAIL PROTECTED]> wrote: openldap 2.3.4 freebsd 5.4 db 4.3.28 As I recall, there is already an ITS filed on this that has been fixed in HEAD. At this point, I suggest testing against HEAD or RE_23 rather than using 2.3.4, as many ch

Re: olcDbConfig not correctly populating DB_CONFIG file

This is a known bug (ITS#3815), already fixed in CVS. The fix will be in the 2.3.5 release. Dusty Doris wrote: openldap 2.3.4 freebsd 5.4 db 4.3.28 I have just started testing with parts of the new ldif configuration in slapd.d and have found (in my experience) that the olcDbConfig settings ar

Re: BDB corruption on windows port of 2.2.19

Thanks for the information Matthew. I had a follow-up question. I obtained a windows version of db_recover online (since it did not come packaged with the windows OpenLDAP installation). There is a var\openldap-data folder under OpenLDAP under which I have these db files: 07/21/2005 06:50 PM

OpenLDAP and CYRUS_SASL

Re: ldap newbie again

Hardik Dalwadi wrote: Hello payal, It's very nice that u want to jump again in OpenLdap. Best way to start OpenLdap as a stand alone is to compile it manually from source. Get the source from OpenLdap.org untar it in some good location like /usr/local

olcDbConfig not correctly populating DB_CONFIG file

openldap 2.3.4 freebsd 5.4 db 4.3.28 I have just started testing with parts of the new ldif configuration in slapd.d and have found (in my experience) that the olcDbConfig settings aren't correctly populated into the DB_CONFIG file upon restart. I start from scratch and create a DB_CONFIG file wi

Re: Attribute rewriting in a metadirectory

> Does anybody knows how to change the value of an attribute? Is this > possible whith back-meta? I've read the man pages and googled around, > but there's not much documentation... Currently, only DN valued attributes can be modified by back-meta. In principle, similar behavior could be envisage

Re: How can I know read-only attrs?

Tomàs Núñez Lirola wrote: Hi again I've been searching a way to know which attributes from a node are read/write, and which are read-only. For what I've seen, there is no way to know this except by trying to modify the attribute and waiting for the server's answer. Am I wrong? Is there a way to

Attribute rewriting in a metadirectory

Hi all, Is there a way to rewrite the value of an attribute with OpenLDAP? I want to add an "i" letter in front of the uid attribute of our users preserving the old values. The uid of our users is numerical (7 digits): dn: uid=2015446,o=org objectClass: top,posixAccount,shadowAccount,sambaSamAcco

Re: ldap newbie again

Hello payal, It's very nice that u want to jump again in OpenLdap. Best way to start OpenLdap as a stand alone is to compile it manually from source. Get the source from OpenLdap.org untar it in some good location like /usr/local/src Go in to /usr/loca

How can I know read-only attrs?

Hi again I've been searching a way to know which attributes from a node are read/write, and which are read-only. For what I've seen, there is no way to know this except by trying to modify the attribute and waiting for the server's answer. Am I wrong? Is there a way to know if the attrs are read/w

Re: How to add, delete and modify the entry without binding ?

Bhavesh Kamani wrote: > I am using openldap 2.2.19 and I want to add, delete and modify > without binding. Can you explain why you want to do this? IMO it's a very bad idea. You should look for a secure solution. > Is there any way ? ACLs with IP-address of the client. But this is not secure! C

Re: Structural objectclass modifications

At 12:43 AM 7/22/2005, Raphaël Ouazana-Sustowski wrote: >Hi, > >Whereas I understand that someone shouldn't modify a person into a >country, as indicated in RFC2251, I don't see why OpenLDAP (2.1+) disallow >to modify an objectclass of the same "chain". For example I can't modify >an organizationa

Re: ldap newbie again

Hi, Payal Rathod wrote: Hi, After my last unsuccessful try and many months of sulking I am trying LDAP again on a stand alone machine with Mandrakelinux release 10.1 (Official) on AMD 2600+ XP machine. I am very very new to Ldap and after my last trust with it am lacking in confidence on ldap

Re: Structural objectclass modifications

Raphaël Ouazana-Sustowski wrote: > > Whereas I understand that someone shouldn't modify a person into a > country, as indicated in RFC2251, I don't see why OpenLDAP (2.1+) disallow > to modify an objectclass of the same "chain". I guess conflicting DIT content rules are one of the issues. Ciao,

Re: invalid structural object class chain (inetOrgPerson/fw1person)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Brian Gaber wrote: |>Attempting to convert OpenLDAP v2.0.27-11 to OpenLDAP v2.2.26 |>I am running the 2.2.26 slapadd on the file created by the 2.0.27 slapcat |> |>Here is what I get: |> |> | | Did you add the fw1person schema to slapd.conf ? | | Yes

Re: Invalid Credentials error for a Bind DN with spl. character

I am running openLDAP 2.2.26 in Windows XP. I am using the build made by Lucas http://bergmans.us/list/openldap-windows/. I have configured slapd.conf to use ldbm database (was wondering if the issue I saw has anything to do with the database in use :-) Earlier, I was using 256 as debug leve

ldap newbie again

Hi, After my last unsuccessful try and many months of sulking I am trying LDAP again on a stand alone machine with Mandrakelinux release 10.1 (Official) on AMD 2600+ XP machine. I am very very new to Ldap and after my last trust with it am lacking in confidence on ldap. Can someone suggest how d

Structural objectclass modifications

Hi, Whereas I understand that someone shouldn't modify a person into a country, as indicated in RFC2251, I don't see why OpenLDAP (2.1+) disallow to modify an objectclass of the same "chain". For example I can't modify an organizationalPerson into a residentialPerson, nor an arganizationalPerson

How to add, delete and modify the entry without binding ?

Dear all, I am using openldap 2.2.19 and I want to add, delete and modify without binding. Is there any way ? if yes then please tell me what is the configuration required in the slapd.conf. Bhavesh.

RE: invalid structural object class chain (inetOrgPerson/fw1person)

>Attempting to convert OpenLDAP v2.0.27-11 to OpenLDAP v2.2.26 >I am running the 2.2.26 slapadd on the file created by the 2.0.27 slapcat > >Here is what I get: > > Did you add the fw1person schema to slapd.conf ? Yes, I did, its not too long (95 lines) so I have included it below. It is call

Re: Invalid Credentials error for a Bind DN with spl. character

Using the following suffix, rootDN works better. Thanks for the suggestion. suffix "O=VeriSign\\2C Inc., C=US" rootdn "cn=Manager,O=VeriSign\\2C Inc.,C=US" I can bind fine with ldapsearch and LDIF update worked fine too. ldapsearch -x -b "o=VeriSign\, Inc.,c=US" -D "cn=Manager,O=VeriSign\,