RE: Adding rfc schema clashes

Wed, 14 Jul 2010 07:37:31 -0700 


> From: [email protected]
> To: [email protected]
> Subject: Re: Adding rfc schema clashes
> Date: Tue, 13 Jul 2010 15:47:31 +0100
> CC: [email protected]
> 
> On Tuesday, 13 July 2010 09:53:39 Stuart Cherrington wrote:
> > Hi,
> > 
> > Think I fixed this one myself, I've replaced the nis.schema with
> >  rfc2307bis.schema as it contains everything and more that nis.schema does.
> 
> But, not the same ... and you should check that all your clients support 
> rfc2307bis (e.g., groupOfNames groups with DN-valued member attributes, 
> instead of posixGroup-only groups with username-valued memberUid attributes).

Not sure how I check what Solaris clients need ion the LDAP server end, will 
troll through google. I 'was' using the nis.schema, but then found that I 
couldn't bind the ldap on my SOlaris clients to the openldap server as the 
nisDomainObject was a missing objecttype. When I found this in rfc2307bis I had 
to replace nis.schema with it and I found I couldn't use both. 

Not sure if I'm 'allowed' to do this but my initial problem was 
copying a posixGroup, the posixGroup def in rfc2307bis.schema lists the 
objecttype as 'AUXILIARY' and no 'cn' is MAY/MUST optioned. so I added 
'cn' to the MAY section and changed the objectclass to 'STRUCTURAL', can
 now now copy posixGroups without errors.



Please let me know if I'm breaking anything.

> 
> [...]
> 
> > Hi,
> > 
> > Running OpenLDAP 2.4 on RHEL 5.
> > 
> > In order for my SOlaris 10 clients to start using the OpenLDAP service I
> >  need the objectclass 'nisDomainObject' to be declared. I found this
> >  objecttype in the 'rfc2307bis.schema' file so I've added it into the
> >  slapd.conf and now LDAP fails to restart with
> > 
> > /usr/share/openldap2.4/schema/nis.schema: line 53 attributetype: Duplicate
> >  attributeType: "1.3.6.1.1.1.1.2" slaptest2.4: bad configuration file!
> 
> Your other alternative is to just copy the nisDomainObject and related 
> attributes to a separate schema file.
> 
> > I did a quick check the and "1.3.6.1.1.1.1.2" is declared in the nis.schema
> >  for the gecos attributetype.
> > 
> > Can I alter the number within the rfc schema?
> 
> That wouldn't help ...
> 
> Regards,
> Buchan
                                          
_________________________________________________________________
http://clk.atdmt.com/UKM/go/197222280/direct/01/
We want to hear all your funny, exciting and crazy Hotmail stories. Tell us now

Reply via email to