On Wednesday, 14 April 2010 11:22:32 Shamika Joshi wrote: > i'm sorry, but I'm beginner with openldap, dont have much knowldge about > how to use schemas here... > could you please explain in brief how to do that? > > On Wed, Apr 14, 2010 at 3:50 PM, Buchan Milne <[email protected]>wrote: > > On Wednesday, 14 April 2010 09:58:45 Shamika Joshi wrote: > > > I'm using samba-openldap on Ubuntu 9.10 Server. I have created > > > following user:rick using smbldap-tools which use default > > > samba.schema.eg shown below. Now I also want to use "Host based > > > authentication" using > > > > pam_filter > > > > > where I need to mention host entry which has to be present in that > > > user record. > > > > > > pam_filter |(host=cms2)(host=cms3) > > > > > > However "host" attribute appears only if I add "objectclass:account". > > > If > > > > I > > > > > go ahead to add that here for user:rick it gives me objectclass > > > > violation. > > > > > What could be the way out of it? Any inputs would be highly appreciated > > > > Use hostObject objectclass from ldapns.schema, shipped with pam_ldap > > source.
Well, you should have noted you were using back-config ... Seems you have already created a custom schema, but I have converted the majority of useful extra schemas for OpenLDAP to LDIF format for Mandriva, you can find them here: http://svn.mandriva.com/cgi-bin/viewvc.cgi/packages/cooker/openldap-extra- schemas/current/SOURCES/ So, to get the original ldapns schema, you could now download http://svn.mandriva.com/cgi-bin/viewvc.cgi/packages/cooker/openldap-extra- schemas/current/SOURCES/ldapns.ldif?revision=535500&view=co and run ldapadd -x -D cn=admin,cn=config -W -f ldapns.ldif Regards, Buchan
