Re: LDAP newb needs help.. (kinda long)

Chuck wrote: On 10/21/07, *Michael Ströder* <[EMAIL PROTECTED] > wrote: Chuck wrote: > I am trying to add the following record stored in cwagon.ldif: > > dn: uid=cwagon,ou=People,dc > =network,dc=com > > cn: Chuck Wagon >

Re: How to set default password encryption?

Aaron Richton skrev, on 23-10-2007 00:48: OpenLDAP should always be able to deal with a "password given in clear text" if it is stored in the userPassword attribute. I'm not sure what you're asking for here, but that statement is true whether you mean "I want to store in clear text in the dire

Re: delta-syncrepl replica out of date

I'm sorry I haven't gotten back to you on this before now. I've done some testing and I need a pointer or two to see if I've got something wonky or a bug. On my master server, the accesslog overlay has a contextCSN value for the accesslog database that has the value of when the slapd was star

Re: slapcat error

On Monday 22 October 2007 16:33:42 Laura Iacob wrote: > Hello there, > I need some assistance with an error generated while trying to perform a > slapcat. > /usr/local/openldap/sbin/slapcat -d 1 -l /home/backup/output.ldif > slapcat init: initiated tool. > > >>> dnNormalize: > > <<< dnNormalize:

Re: SyncREPL generates high traffic to calculate delta

Quanah Gibson-Mount wrote: > > You may want to examine delta-syncrepl, as well. Normal syncrepl > completely replaces an entry on modification, whereas delta-syncrepl > only modifies what changed in the entry. > > --Quanah > Why not trying delta-syncrepl. But it doesn't explain why , when i add 1

Re: OpenLDAP as a SASL backend

OK, got that. Now I am trying a different SASL configuration, and I have these mechanisms available: > ldapsearch -h localhost: -x -b '' supportedSASLMechanisms -s base -LLL dn: supportedSASLMechanisms: LOGIN supportedSASLMechanisms: PLAIN With the same data, I tried running ldapsearch with

Re: SyncREPL generates high traffic to calculate delta

--On Tuesday, October 23, 2007 11:15 AM +0200 Bruno Lezoray EMSM <[EMAIL PROTECTED]> wrote: Why not trying delta-syncrepl. But it doesn't explain why , when i add 1 entry on the master, the replica receives 9000 TCP packets. When i do the same operation on a testbed platform, master send only

ldap_init( ) causing segv violation (malloc failure)

Hi  everyone,  require your suggestion ,  facing segmentation violation issue, when invoked ldap_init()when tried analysing by gdb of coredump it points for malloc failure in ldapxx.so libraries, not sure wheather any issues should be considered for overcoming this,  would appreciate your solution

codding the controlValue in an LDIF control field

Hi ! I have a doubt trying to code an "assertion control" (according to RFC 4528) in the "control" field of an LDIF file. The assertion to code is a simple "equalityMatch" filter (i.e. "attribute type = attribute value"). This is the LDIF file I was preparing (to pass to an "ldapmodify" c

Re: ACL to bind groups from a IP

I have read all that you suggested to me. I have this ACL: access to attrs=userPassword by peername.ip=192.168.70.133 write by * none With this, the users can bind from this IP, but I can't include groups,or something about users that have GID=1000, for example. Does anybody can help

Using paged results, between 2.2.26 and 2.3.38.

I've got a number of auditing/update/query programs that make use of the paged results extension for large queries Since upgrading the server to 2.3.38 from 2.2.26, all these programs have broken; they can retrieve the first page of results, but any attempt top fetch the next page results in a "pa

Re: ldap_init( ) causing segv violation (malloc failure)

1) please don't send mails in html (see the result below) 2) my crystal ball tells me that you're using a 64 bit architecture. ldap_init() is deprecated and, as such, its prototype is not usually visible. Instead of teaching you how to work this around, I prefer you to use ldap_initialize(), which

Re: ACL to bind groups from a IP

Daniel Pérez del Campo wrote: > I have read all that you suggested to me. I have this ACL: > > access to attrs=userPassword > by peername.ip=192.168.70.133 write > by * none > > With this, the users can bind from this IP, but I can't include > groups,or something about users that have GID

Re: Using paged results, between 2.2.26 and 2.3.38.

--On Tuesday, October 23, 2007 9:27 AM -0300 Brandon Hume <[EMAIL PROTECTED]> wrote: I've got a number of auditing/update/query programs that make use of the paged results extension for large queries Since upgrading the server to 2.3.38 from 2.2.26, all these programs have broken; they can ret

Re: OpenLDAP as a SASL backend

"Zohar Lev Shani" <[EMAIL PROTECTED]> writes: > OK, got that. > > Now I am trying a different SASL configuration, and I have these > mechanisms available: > >> ldapsearch -h localhost: -x -b '' supportedSASLMechanisms -s base -LLL > dn: > supportedSASLMechanisms: LOGIN > supportedSASLMechanism

reducing information duplication

Hello list. I'm looking for a way to reduce information duplication in an LDAP directory, using the equivalence of joint in SQL databases. Basically, all my user entries (inetorgperson + posixAccount) need to have a 'secretary' and a 'manager' field, but given than all users from the same gro

Re: delta-syncrepl replica out of date

Francis Swasey wrote: I'm sorry I haven't gotten back to you on this before now. I've done some testing and I need a pointer or two to see if I've got something wonky or a bug. On my master server, the accesslog overlay has a contextCSN value for the accesslog database that has the value of whe