ts,dc=example,dc=com
uid: joe
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
/opt/symas/lib/sasl2 (for Symas OpenLDAP builds). Similar idea for OS
builds, etc, just with their paths instead.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
ided by Symas for Ubuntu.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
attrs and delete the ppolicy overlay, your resulting DB will
be in a bad state (I.e., it's on you to clean up your database first).
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
DNs for simple binds.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
hat you want to ensure you're running 2.5.8 or
later (See ITS#9671).
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Wednesday, December 15, 2021 8:23 PM +0100 Stefan Kania
wrote:
Am 15.12.21 um 19:44 schrieb Quanah Gibson-Mount:
Please file a bug.
How can I? Is there someting like bugzilla I know from the Samba project.
Step 1: Browse to https://www.openldap.org
Step 2: Click on the "
.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
ple,DC=com). If I use a more specific base, such as
CN=Computers,DC=example,DC=com the operation succeeds. Is there a
limitation to the search function?
This sounds like a question for Microsoft and what limitations it imposes.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas C
have also been significant changes made to how sync replication works
in the 2.5 release that could not be done in the 2.4 series that make
standard syncrepl viable.
Finally, I would note that there is nothing that prevents one from
compiling OpenLDAP 2.5 (or later) on Solaris.
Regards,
Quan
:
slapo-allowed is now available.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
-mdb to update indices correctly on replace ops (ITS#9753)
Fixed slapo-syncprov to generate a more accurate accesslog query (ITS#9756)
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<h
no such object, doesn't really tell me much.
OTOH, memberof is deprecated now, so not sure how much I care. ;)
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Monday, December 13, 2021 10:25 AM +0100 Ulrich Windl
wrote:
Quanah Gibson-Mount schrieb am 10.12.2021 um 18:00
in
Nachricht <2A5F43DA950658AE64FEE654@[192.168.1.3]>:
You are right insofar as Redhat and SUSE both moved from openLDAP to
389ds in their current releases, but
roject
(<https://www.openldap.org/project/>). I'm telling you two things:
a) 2.4 is historic and no longer supported.
b) 2.5 is the current stable release.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions
kages used in production by our paying support customers, and critical
issues found therein are promptly fixed. So *free* users get actual
support and benefit from using our packages that are not obtainable via
distribution provided packages.
Regards,
Quanah
--
Quanah Gibson-Mount
Prod
test suite and has no issue. We also have
customers running with delta-sync and no issue.
As an aside, I would note that "olcmirrormode" was renamed to
"olcmultiprovider" in 2.5+
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified
symas packages do not include the test suite. However, cn=config
replication is tested in the test suite, both with syncrepl and
delta-syncrepl, and passes.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by
k to
OpenSSL already and skip building OpenLDAP yourself.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Tuesday, December 7, 2021 8:39 AM -0800 Quanah Gibson-Mount
wrote:
--On Tuesday, December 7, 2021 9:57 AM + santoshk.se...@tcs.com wrote:
Thanks Emmanuel,
Is it a stable version we can reply upon? Because the request is for a
production environment which are running critical
.example.net
olcServerID: 4 ldap://ldap04.example.net
It's URI format or not?
It is, but that's from a MOD. The configs don't start *out* that way.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by
replication of cn=config
on all servers?
The documentation clearly states that for cn=config replication, the
serverID must be in # URI format.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<h
binaries via a
repository as described at <https://repo.symas.com/soldap/>. Paid support
is optionally available as well.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
multi-line attribute values and the leftover bits get
tacked onto the previous attribute. One way around this is to turn off
LDIF line wraps on export.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
ds,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Wednesday, December 1, 2021 9:36 PM -0800 Quanah Gibson-Mount
wrote:
--On Wednesday, December 1, 2021 10:35 PM + Magnus Morén
wrote:
I have now tested dynlist and I have the memberOf working. Good.
I did a "remove user" test...
When I remove a user from th
This would imply that you left the "memberOf" attribute present on the raw
entry. That would need to be manually removed.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
quot; and pwdLastSuccess is sufficient,
you don't need the fix nor do you need to load the lastbind contrib module.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
est,
Yeah, there's a number of issues currently being tracked down, I hope to
have new packages or a new OpenLDAP release soon.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
e the functionality of the
slapo-memberof(5) overlay.
Your attribute is "uniqueMember" not member, and your group objectClass is
"groupOfUniqueNames" not groupofNames. You need to adjust the
dynlist-attrset accordingly.
--Quanah
--
Quanah Gibson-Mount
Product Ar
amp): attribute type undefined
slapadd: could not parse entry (line=24)
Closing DB...
You need the fix for ITS#9725 to make use of authTimestamp.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
&l
--On Monday, November 29, 2021 12:24 PM -0800 Quanah Gibson-Mount
wrote:
--On Monday, November 29, 2021 7:18 PM +0100 Michael Ströder
wrote:
HI!
Hmm, I cannot see what I'm doing wrong here. Compiling other contrib
modules works just fine.
$ make -B -C contrib/slapd-modules/ac
ap/contrib/slapd-modules/acl'
gcc now.c -o now
now.c:28:10: fatal error: portable.h: No such file or directory
28 | #include
I would suggest fixing your CFLAGS? Other contrib modules have no issue
finding the header file.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Sy
, except "provider" not "replica".
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
something like
database frontend
...
to fix it, but it doesn't appear to.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
d.conf(5) man page section on
TLSCipherSuite for the GnuTLS command line to print out relevant
information.
This ticket may also be helpful: <https://mod.gnutls.org/ticket/29>
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LD
me.
There is no support for using the MS visual studio C compiler to build
openldap. I was talking about using gcc etc inside of MSYS2 to do the
build.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP
> On Nov 10, 2021, at 7:07 PM, Paul B. Henson wrote:
>
> On Wed, Nov 10, 2021 at 04:36:00PM -0800, Quanah Gibson-Mount wrote:
>
>> If you disable the dynlist overlay, do you get the same behavior?
>
> Nope; if I remove the line
>
>dynlist-attrset groupOf
uire ldap-group uid=unxadmin,ou=group,dc=cpp,dc=edu
This stopped working when accessing a server updated to 2.5. On the 2.4
server, the Apache logs look like:
If you disable the dynlist overlay, do you get the same behavior?
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corpo
--On Wednesday, November 10, 2021 8:41 AM -0800 Christopher Paul
wrote:
On 11/10/21 7:49 AM, Quanah Gibson-Mount wrote:
See
<https://lists.openldap.org/hyperkitty/list/openldap-announce@openldap.o
rg/thread/BH3VDPG6IYYF5L5U6LZGHHKMJY5HFA3L/> , specifically the section
entite
be done on the OpenLDAP proxy. Thanks
you for your help !
See
<https://lists.openldap.org/hyperkitty/list/openldap-annou...@openldap.org/thread/BH3VDPG6IYYF5L5U6LZGHHKMJY5HFA3L/>
, specifically the section entited "New replication protocols".
--Quanah
--
Quanah Gibs
/local/var/openldap-data
index objectClass eq
database monitor
If you are still unable to set the minimum protocol, I would advise
confirming what TLS library your slapd build is linked to. For example,
the TLSProtocolMin parameter has no effect when slapd is linked to GnuTLS.
Regards,
Quanah
-
fully.
If 'ber_sockbuf_io_udp' absence is intentional, should I somehow account
for it during './configure'?
That symbol only exists if OpenLDAP is built with LDAP_CONNECTIONLESS
defined, which is not a supported feature. Feel free to file a bug report
at https://bug
SSL or TLS.
I would note that your TLS configuration directives are inside the database
backend definition which is invalid. They are global options and should
appear before any database configuration section.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged,
ion for the 2.6 version? I can look to upgrade it.
The OpenLDAP website has a tarball of the source available for download.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
e also have free
replacement packages providing OpenLDAP 2.4.59 on RHEL7 at
<https://repo.symas.com/sofl/rhel7/>.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
changes required in OpenLDAP
source code to compile successfully on Windows with MSVC compiler if any?
I've generally used MSYS2 to compile OpenLDAP on Windows.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by Ope
mberOf.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
e it to use the system CAs as well as your
own local certificate authority if desired.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
you're running in an MMR environment? Alternatively,
if there is some need that mandates consumers, there are examples in the
test suite on how to set things up so that a group of consumers share a
replicated database (See test059 or test086).
Regards,
Quanah
--
Quanah Gibson
.noa.gr, issuer: /C=NL/O=GEANT Vereniging/CN=GEANT OV RSA CA
4
TLS certificate verification: Error, unable to get local issuer certificate
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Tuesday, October 19, 2021 9:55 PM -0700 "Paul B. Henson"
wrote:
On 10/19/2021 8:10 AM, Quanah Gibson-Mount wrote:
If you want it to run as a non-root user, it's on you to configure it as
such, including said user. The majority of Symas customers run as
root.
r. The majority of Symas customers run as root.
So yes, this is intentional and due to the fact that it's not attempting to
be the replacement of the system bundled OpenLDAP. You're free to run
things as best fits your environment.
--Quanah
--
Quanah Gibson-Mount
Product Archite
ends have been removed:
back-ndb
back-shell
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
0>
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
contextCSN of both server are exactly the same (both context csn),
but the entry has not been created on the second server.
Do a modify of some sort on that entry on the server where it exists, that
should force it to re-sync.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Symas OpenLDAP 2.5.8 is now available. Installation instructions available
at <https://repo.symas.com/soldap/>. Builds are provided for free of use
with no support. Optional paid support is available, further details at
<https://www.symas.com/>
Regards,
Quanah
--
Quanah
--On Monday, October 4, 2021 10:44 AM +0200 Bastian Tweddell
wrote:
On 30Sep21 08:39-0700, Quanah Gibson-Mount wrote:
> The setup we use is quite simple, so a number of tests are skipped.
> Would you recommend, or like to see certain configurations to be
> tested?
Mainly the ne
er causing all sorts of
problems unless you start shelling out some cash to get decent perf.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Thursday, September 30, 2021 4:15 PM +0200 Bastian Tweddell
wrote:
On 28Sep21 12:12-0700, Quanah Gibson-Mount wrote:
Generally, get the code for RE26:
<https://git.openldap.org/openldap/openldap/-/archive/OPENLDAP_REL_ENG_2
_6/openldap-OPENLDAP_REL_ENG_2_6.tar.gz>
E
ACL" then the ACL data starts getting added to
the log. No restart required.
If I change it back to "stats" I keep getting ACL data until the
directory is restarted.
This should now be fixed.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, cert
> On Sep 29, 2021, at 8:09 PM, Howard Chu wrote:
>
> Quanah Gibson-Mount wrote:
>>
>>
>> --On Thursday, September 30, 2021 12:53 AM +0100 Howard Chu
>> wrote:
>>
>>> Nick Folino wrote:
>>>> Yes. Logging now continues to work a
18 slapd[5980]: conn=1004 op=1 SEARCH RESULT tag=101
err=0 qtime=0.000176 etime=0.000428 nentries=1 text=
Sep 30 01:31:52 ub18 slapd[5980]: conn=1004 op=2 UNBIND
Sep 30 01:31:52 ub18 slapd[5980]: conn=1004 fd=13 closed
Zero need to restart slapd or use a replace op to reset the logging.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
fixed. :)
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
l honor debug level settings passed
via the -d option.
*) The standalone form of lloadd can deadlock if the monitor backend is
enabled.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Friday, September 17, 2021 10:13 AM -0700 Quanah Gibson-Mount
wrote:
--On Tuesday, September 7, 2021 7:07 PM -0400 Nick Folino
wrote:
Thanks Quanah. olcLogFile and olcLogFileOnly seem to have no effect.
Using them I still get logs only to the journal on Fedora 34.
Hi Nick
lt;https://mishikal.wordpress.com/2019/04/23/configuring-mmr-using-delta-syncrepl-in-openldap-updating-an-existing-standalone-configuration/>
that should be possible to pull from.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions
tput
of slapcat -n 0 -l /tmp/config.ldif) with any passwords redacted. What you
provided clearly fell fall short of that and is all I have to go off of.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by
replication to function.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
an be bypassed entirely
and a purely local log file can be used, resulting in a significant
performance increase.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
configured correctly.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
customizations to OpenLDAP 2.3 they
likely do not remotely apply any longer (I.e., the bdb/hdb backends found
in 2.3 no longer exist in 2.5).
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<h
need to install the development package for cyrus-sasl on your platform
so that OpenLDAP can link against it.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
le-modules --enable-rlookups
--enable-backends=mod --disable-ndb --disable-sql --disable-wt
--enable-overlays=mod
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
was
just not run after the library was installed.
Or just correctly set the compile time build flags so that the library
runpath is correctly built into the binaries.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered
with that information.
Thanks,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
However, I'd strongly advise looking at migrating to 2.5. Symas provides
free 2.5 packages as well (<https://repo.symas.com/soldap/>).
Additionally, optional paid support is available for either.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Package
Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
mas.com/soldap/rhel7/>).
I'd also note that your syncrepl stanza is missing the "keepalive" option,
which is usually essential when dealing with traffic through load balancers.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and
log. After that order should
be immaterial.
I would note that in OpenLDAP 2.5, a bit of the lastbind functionality has
been integrated into slapd so you may not need to deploy it separately.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported L
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Tuesday, September 14, 2021 10:37 AM -0700 Quanah Gibson-Mount
wrote:
All tests completed without error. I then ran the regressions tests and
got this error:
Thanks Scott,
I'm able to reproduce and investigating.
This should now be fixed.
--Quanah
--
Quanah Gibson-
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Monday, September 13, 2021 2:33 PM +0300 Дилян Палаузов
wrote:
Hello,
How can I create an entry (in terms of ldif/ldapadd/ldapmodify), which
is not returned on searches (apart from tweaking the olcAccess rules?
You need to tweak the olcAccess rules.
--Quanah
--
Quanah Gibson
ble-ppolicy --enable-memberof make depend
make
make test
All tests completed without error. I then ran the regressions tests and
got this error:
Thanks Scott,
I'm able to reproduce and investigating.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged,
appen for 2.6. File a bug on it though for
the future.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
ds,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
--On Tuesday, September 7, 2021 8:57 PM +0200 Michael Ströder
wrote:
On 9/7/21 19:01, Quanah Gibson-Mount wrote:
This is the first testing call for OpenLDAP 2.6.0 Release.
FWIW: make test worked on openSUSE Tumbleweed x86_64.
But what are the main differences compared to 2.5.7?
I
so supports this new feature, but it can
be tested with slapd at this time.
Additionally, the following deprecated backends have been removed:
back-ndb
back-shell
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
resence%20indexing>
If the group object is large you may be having slow searches due to indices
being collapsed to a range. You would need to run the search with trace
logging to determine if that's the case as was recently discussed on the
list.
Regards,
Quanah
--
Quanah Gibson-Mou
recommend either groupOfNames or groupOfMembers
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
provide it for them.
posixGroup is not a valid objectClass to use with providing memberOf
information.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
at
https://bugs.openldap.org with the reproduction steps. Thanks!
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
external schema. The msuser.ldif is provided for those people who want to
try the AD replication integration added in OpenLDAP 2.5.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
entry for whatever
you have defined the default policy to be or whatever policy it is that
applies to the entries you are modifying.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
. Installations should use the dynlist
overlay
instead. Using this overlay in a replicated environment is
especially
discouraged.
The point was you should be using dynlist rather than memberOf.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged
--On Friday, August 27, 2021 6:09 PM -0400 Dave Macias
wrote:
Hello again...
On a clean rocky linux install i cannot seem to be able to add the
memberof.la module. Get below output:
First question is, why are you installing memberOf module at all? :)
--Quanah
--
Quanah Gibson-Mount
2.5 source
tree, without any other modifications, you should have gotten a compile
error.
It didn't exist in the contrib directory in OpenLDAP 2.4, and he
specifically noted he built it out of contrib with 2.5.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged,
our build and the related debuginfo packages.
<https://repo.symas.com/soldap/>
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
issue however.
--Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
501 - 600 of 3795 matches
Mail list logo
