Re: reducing information duplication

Gavin Henry a écrit : >>> and a >>> grep -i -r collective on the source code supplies lots of matches. >> This doesn't really constitute documentation... >> > > collect.c is just a demonstration of overlay code for developers, hence > no docs. That's what I understood also, hence my lack of motiva

change my database directory

Hi, I would like to change my database directory. I changed for newdir in slapd.conf and DB_CONFIG I have deleted my default database directory /var/lib/openldap/openldap-data When I run: slapd -Tt -F /home/ldap/newdir -f /home/ldap/newdir/slapd.conf I get the message: bdb_db_open: Cannot access d

Re: reducing information duplication

Guillaume Rousse a écrit : > I've had a quick look at slapo-dynlist man page, it seems it could > achieve it using 'see-also' attribute to refer to the group dn, and > probably an additional schema to add 'secretary' and 'manager' > attributes to my group entries (posixGroup + groupOfNames). My fir

Re: Replication Problem

On Thursday 25 October 2007 21:51:12 Marcus Frischherz wrote: > Hi, > > I think I searched the internet and the documentation carefully, and > still have problems: > > Master and slave are both openSuSE 10.2, running openldap 2.3.27 > (unaltered SuSE version). > > I set up in the master: If this w

Re: Most stable loglevel

> On 10/25/07, matthew sporleder <[EMAIL PROTECTED]> wrote: > > On 10/25/07, Sumith Narayanan <[EMAIL PROTECTED]> wrote: > > > Hi All, > > > > > > I am running $OpenLDAP: slapd 2.3.27 and Berkeley DB (Version: > > > 4.4.20) on MacOSX 10.4. > > > > > > The process crashes with memory leak often. Th

Re: reducing information duplication

Guillaume Rousse wrote: > Gavin Henry a écrit : >> collect.c is just a demonstration of overlay code for developers, hence >> no docs. > That's what I understood also, hence my lack of motivation to consider > it as a viable implementation of collective attributes for openldap 2.3 > currently. Al

Re: Replication Problem

Buchan Milne schrieb: > On Thursday 25 October 2007 21:51:12 Marcus Frischherz wrote: >> Hi, >> > >> I set up in the master: > > If this was *exactly* what was in your slapd.conf, it is broken. White space > is very important in slapd.conf, there should be leading white space before > the first

Re: Paged results and multiple bdb backends.

Okay, before I file a bug report, I just want to make sure that what I'm seeing is not the way it's meant to be. When running: $ ldapsearch -x -b dc=bofh,dc=ca -h ldap-test -E pr=2 '(objectclass=*)' dn I see: [] # search result search: 2 result: 0 Su

case sensitive dn

Hi all, just a short question: Is that possible to have case sensitive DN's for example dn: ou=something,o=something and dn: ou=SOMETHING,o=SOMETHING I am getting error when trying to add dn "ou=SOMETHING,o=SOMETHING" to LDAP when there is already an dn "ou=something,o=something" present.

Regarding slapd.conf

Hi, I am not able to understand how to create hierarchy in openldap... We can mention multiple suffix but what is the use and how it will relate to the rootdn b'coz we can mention suffix in slapd.conf which is under rootdn...then how mutilple suffix contain different values.. Please help me out W

problem with access by set and group membership (posixgroup, groupofnames)

Hi I am trying to garnt users access to a group by there group membership. Because the groups are posixgroups and not groupofnames I have tried the following ACL's according to (running openldap-2.3.27-5) http://www.openldap.org/faq/data/cache/1133.html and http://www.mail-archive.com/openldap-s

Regarding Multimaster slapd communication

Hi, How multimaster communication is done in openLDAP How to specify master in the slapd.conf file replica attribute is for replication but how to specify another master in slpad.conf file Waiting for Reply Thanks and Regards, Anjali

Re: reducing information duplication

Pierangelo Masarati wrote: Guillaume Rousse wrote: Gavin Henry a écrit : collect.c is just a demonstration of overlay code for developers, hence no docs. That's what I understood also, hence my lack of motivation to consider it as a viable implementation of collective attributes for openldap

Re: Replication Problem

Marcus Frischherz wrote: Buchan Milne schrieb: On Thursday 25 October 2007 21:51:12 Marcus Frischherz wrote: Hi, I set up in the master: If this was *exactly* what was in your slapd.conf, it is broken. White space is very important in slapd.conf, there should be leading white space before th

Re: case sensitive dn

"jorge sanchez" <[EMAIL PROTECTED]> writes: > Hi all, > > just a short question: > > Is that possible to have case sensitive DN's for example > > dn: ou=something,o=something > > and > > dn: ou=SOMETHING,o=SOMETHING > > I am getting error when trying to add dn "ou=SOMETHING,o=SOMETHING" to LDAP >

RE: case sensitive dn

That's because ou=SOMETHING,o=SOMETHING and ou=something,o=something are equivalent DNs. In general, that's just plain a bad idea to design a tree where you have dn's that are identical other than case (assuming it's even possible), for the exact case you are running into. But... my guess would

Re: Paged results and multiple bdb backends.

On 10/26/07, Brandon Hume <[EMAIL PROTECTED]> wrote: > Okay, before I file a bug report, I just want to make sure that what I'm > seeing is not the way it's meant to be. > > When running: > > $ ldapsearch -x -b dc=bofh,dc=ca -h ldap-test -E pr=2 > '(objectclass=*)' dn > > I see: > >

Re: Replication Problem

--On Friday, October 26, 2007 10:32 AM +0200 Marcus Frischherz <[EMAIL PROTECTED]> wrote: This after I changed the slave to look like this: updatedn="uid=rmanager,ou=intern,o=rori" updateref rori_vpn:389 I think the slapd.conf man page is quite clear about this: updateref Your update

Re: Replication Problem

Le Ven 26 octobre 2007 18:30, Quanah Gibson-Mount a écrit : > --On Friday, October 26, 2007 10:32 AM +0200 Marcus Frischherz > <[EMAIL PROTECTED]> wrote: > >> This after I changed the slave to look like this: >> updatedn="uid=rmanager,ou=intern,o=rori" >> updateref rori_vpn:389 > > I think the slap

Re: Replication Problem

--On Friday, October 26, 2007 5:57 PM +0200 Marcus Frischherz <[EMAIL PROTECTED]> wrote: However, meanwhile I did configure the syncrepl mechanism, and found it to be easy to implement, and working, so I stopped trying to get the slurpd mechanism to work, but still think that it is broken some

Re: Replication Problem

--On Friday, October 26, 2007 9:30 AM -0700 Quanah Gibson-Mount <[EMAIL PROTECTED]> wrote: --On Friday, October 26, 2007 10:32 AM +0200 Marcus Frischherz <[EMAIL PROTECTED]> wrote: This after I changed the slave to look like this: updatedn="uid=rmanager,ou=intern,o=rori" updateref rori_vpn:38

Re: reducing information duplication

Pierangelo Masarati a écrit : > Guillaume Rousse wrote: >> Gavin Henry a écrit : > >>> collect.c is just a demonstration of overlay code for developers, hence >>> no docs. >> That's what I understood also, hence my lack of motivation to consider >> it as a viable implementation of collective attri

Re: Regarding slapd.conf

"Anjali Arora" <[EMAIL PROTECTED]> writes: > Hi, > > I am not able to understand how to create hierarchy in openldap... > We can mention multiple suffix but what is the use and how it will relate to > the rootdn rootdn is specific to database > b'coz we can mention suffix in slapd.conf which is u

Re: Replication Problem

Gavin Henry schrieb: > Marcus Frischherz wrote: >> Buchan Milne schrieb: >>> On Thursday 25 October 2007 21:51:12 Marcus Frischherz wrote: > > Always read up to date docs when you can or search our archives. > Well, that was not really helpful. In particular, it did not respond to any of my ques

Re: Access Control by group

Ack. Just found this: http://www.openldap.org/lists/openldap-software/200710/msg00343.html and this: http://www.mail-archive.com/openldap-software@openldap.org/msg08524.html Looks like other people are trying to work with posixGroups as well. On 10/26/07, Jason Dearborn wrote: > > I'd like to

Access Control by group

I'd like to grant members of an Administrator group full access to everything in LDAP. According to the ldap FAQ, the default objectclass is "groupOfNames" and the default attribute checked is "member". To match my config I'd need to change the values to "posixGroup" and "memberUid" respectively.

Re: Access Control by group

On Oct 26, 2007, at 1:42 PM, Jason Dearborn wrote: Ack. Just found this: http://www.openldap.org/lists/openldap-software/200710/msg00343.html and this: http://www.mail-archive.com/openldap-software@openldap.org/ msg08524.html Looks like other people are trying to work with posixGroups as we

Re: Access Control by group

--On Friday, October 26, 2007 1:30 PM -0700 Jason Dearborn <[EMAIL PROTECTED]> wrote: Has anyone been able to make this work? Sure, I just created a normal group, like you'll find here: (See the "ldapAdmin"