|
How to add a new schema to openldap 2.4.11 ?
Hello,
openldap 2.4.11 uses cn=config as the main configuration instead of slapd.conf . How to add a new schema to openldap 2.4.11 that uses cn=config, please? TIA, cviniciusm. |
Hi and welcome to LQ.
Quoting from this guie: Quote:
|
Hello,
Thanks for the reply. I have seen this tutorial before, I followed it, but it doesn't work. # ldapadd -x -D cn=admin,cn=config -f /tmp/ldif_output/cn\=config/cn\=schema/cn\=\{8\}misc.ldif ldap_bind: Server is unwilling to perform (53) additional info: unauthenticated bind (DN with no password) disallowed OR # ldapadd -x -D cn=admin,cn=config -W -f /tmp/ldif_output/cn\=config/cn\=schema/cn\=\{8\}misc.ldif Enter LDAP Password: adding new entry "cn=misc" ldap_add: Server is unwilling to perform (53) additional info: no global superior knowledge I'm using Ubuntu 8.10 . I want to include rfc2307bis.schema and exclude nis.schema due to egroupware advice. Any ideas, please? Regards, cviniciusm. |
Quote:
Quote:
Also make sure you've remove the last lines from the ldif as mentioned in the guide. Also you said you want to add rfc2307bis.schema, but you're trying to add the misc.schema as in the example. You can use ldapbrowser to manage the ldapserver. Cheers |
Hello,
The second example uses the correct password, as showed. I used the misc.schema to test the tutorial, so I think the tutorial doesn't work with Ubuntu 8.10 and OpenLDAP 2.4.11 . So, it will fail with my purpose. I'm searching the Internet a month and not found the solution, yet. The ldapbrowser is a GUI. I'm using openldap on a server without GUI and with loopback address. Cheers. |
Quote:
Anyway you are not going to succeed with the misc.schema. I guess you'll get a "Duplicate entry..." or "Already exists..." error. Try to add directly the rfc2307bis.schema you want. Another thing to pay attention is to edit the ldif and use the correct dn and cn values for the entry you want to add. In the misc.schema example you must have: Code:
dn: cn=misc,cn=schema,cn=config |
Hello,
The item 4 on https://help.ubuntu.com/8.10/serverg...ap-server.html is not clear. The output of previous step (for the misc.ldif) has "dn: cn={8}misc". So I changed it to "dn: cn=misc,cn=schema,cn=config" as you pointed it. It worked fine. I think it's more clear to say: 4. edit the misc{8}.ldif: "dn: cn={8}misc" to "dn: cn=misc,cn=schema,cn=config". ... Thanks a lot. |
Hi All, I'm working on rfc2703bis too, but I cannot add this schema on openldap because nis schema is still inside...
cviniciusm, did you find a solution to insert this schema on openldap? Thanks Ket' |
hello guys,
I am also working on openldap + samba on ubuntu 8.10 using the guide. But i am also stuck on the point where it says ldapadd -x -D cn=admin,cn=config -f /tmp/ldif_output/cn\=config/cn\=schema/cn\=\{12\}misc.ldif for me it says /tmp/ldif_output/cn=config/cn=schema/cn={12}misc.ldif: No such file or directory If i create file cn={12}misc.ldif manually and ran the command it says ldap_bind: Server is unwilling to perform (53) additional info: unauthenticated bind (DN with no password) disallowed Please help me in this regard, I am badly stuck ! |
Heyy
Don't create cn={12}misc.ldif manually, it's not the good way. Check the rights for cn=config... maybe you need to be root... This command shoud create the file: slaptest -f schema_convert.conf -F /tmp/ldif_output If not, you had a problem before... |
OK I know this is old but I too am having troubles wit this.
I am currently setting up a new LDAP server to migrate my old one to. I get to this point Code:
ldapadd -x -D "cn=admin,cn=config" -W -f /etc/ldap/schema/output/cn\=config/cn\=schema/cn\=\{4\}samba.ldifI assume that cn=admin,cn=config is correct. I have also tried cn=admin,dc=mydomain but I get this Code:
root@sullivan:/etc/ldap/schema# ldapadd -x -D "cn=admin,dc=berrancenetworks,dc=local" -W -f /etc/ldap/schema/output/cn\=config/cn\=schema/cn\=\{4\}samba.ldif (edit) Forgot to add I am on Debian 6.0.1 and using OpenLDAP 2.4.27-7 Berrance |
Hi! I'm getting the exact same Error message as berrance, did you find out how to solve it?
Thanks a lot in advance Daniela |
Hi all!
If anyone still needs help with this, I added my schema, this is how I did it: (I'm running openldap 2.4.23-7.2 over debian6) It's pretty much the same as bathory says, but I'm gonna write everything I did, just in case ;) vim /tmp/borrame.conf (this is what goes in the file) include /etc/ldap/schema/core.schema include /etc/ldap/schema/cosine.schema include /etc/ldap/schema/nis.schema include /etc/ldap/schema/inetorgperson.schema include /etc/ldap/schema/misc.schema include /etc/ldap/schema/mypersonalschema.schema mkdir /tmp/borrame.d slaptest -f /tmp/borrame.conf -F /tmp/borrame.d Edit the generated file vim /tmp/borrame.d/cn\=config/cn\=schema/cn\=\{5\}mypersonalschema.ldif I changed the three head lines to this: dn: cn=mypersonalschema,cn=schema,cn=config objectClass: olcSchemaConfig cn: mypersonalschema Then I deleted these lines from the bottom of the file: structuralObjectClass: entryUUID: creatorsName: createTimestamp: entryCSN: modifiersName: modifyTimestamp: And at last I inserted the new schema to the ldap tree: ldapadd -Y EXTERNAL -H ldapi:/// -f /tmp/borrame.d/cn\=config/cn\=schema/cn\=\{5\}mypersonalschema.ldif I hope this helps, Daniela |
Quote:
Muchas gracias Daniela, you saved my life. |
This sed script should help
I know it's been months since this was answered, but here goes a sed script to do this copy-paste style.
I used: Code:
cd <your dir where the generated .ldif files are>Code:
s~dn: cn=\{([0-9]+)\}(.*)$~dn: cn=\2,cn=schema,cn=config~g |
| All times are GMT -5. The time now is 08:33 AM. |