Hi All,

I've been tasked with moving our OpenLDAP from one server to another and in the process to upgrade it from v 1.4 (I think it is) to 2.3.43 running on Red Hat 5.5.

Everything was going fine until I noticed that not all the data was being transferred. Not being not LDAP expert, I tried to load a few objects manually (see below) to see what the problem was and this is what I found.

slapadd -v -c -d -1 -l /tmp/person_info.ldif -f /etc/ldap/slapd.d.conf
db_db_open: dbenv_open(/var/lib/ldap.dev)
=> str2entry: "dn: cn=ucsInetOrgPerson Template Info,cn=Directory Administration,o=The UCS
Company
objectClass: ucsClientTemplateInfo
clearFields: cn
clearFields: sn
includesClasses: ucsInetOrgPerson
"
>>> dnPrettyNormal: <cn=ucsInetOrgPerson Template Info,cn=Directory Administration,o=The UCS Company>
<<< dnPrettyNormal: <cn=ucsInetOrgPerson Template Info,cn=Directory Administration,o=The UCS Company>, <cn=ucsinetorgperson template info,cn=directory administration,o=the ucs company>
str2entry: invalid value for attributeType includesClasses #0 (syntax 1.3.6.1.4.1.1466.115.121.1.38)
slapadd: could not parse entry (line=7)

I'm pretty sure it's a problem with one of the schemas but what exactly I don't know. As you can see we're using our own schema - here is a scaled down extract from the ucsInetOrgPerson schema.

objectclass ( 1.3.6.1.4.8324.2.2.2 NAME 'ucsInetOrgPerson'
SUP inetOrgPerson
MAY ( mailalias $ flags $ prefix $ specialty $ displayComment $
locationCode $ pollNumber $ alternateAddress ) )

attributetype ( 1.3.6.1.5.8324.2.1.28 NAME 'includesClasses'
EQUALITY objectIdentifierMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )

In my slad.conf I'm including the following schemas.

include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/ucs.dev.schema

At this point I'm pretty stuck and any help or pointing in the right direction would be greatly appreciated.

Thanks
Bruce

What is on line 7 of person_info.ldif?

Thanks for taking the time to have a look.

On line 7 it's only the ". When I copied and pasted the error the formatting got a bit messed up - I've fixed that now. The ldiff file contents are what's in bold.

Bruce

you could try running slapd with -d 256 and see what is happening

For log levels see http://www.bind9.net/manual/openldap...apdconfig.html

Thanks will give it a try on Tuesday and let you know.

This is the message I get when I run it with -d 256.

str2entry: invalid value for attributeType includesClasses #0 (syntax 1.3.6.1.4.1.1466.115.121.1.38)
slapadd: could not parse entry (line=7)

Same as before.

Bruce

Thanks Everyone for your help.

So, I've managed to get it working. I don't think what I've done is 100% correct but it's good enough for my application. In case you're also struggling with something similar, this is what I did.

I changed my schema ucs.dev.schema to the following.

attributetype ( 1.3.6.1.5.8324.2.1.28 NAME 'includesClasses'
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )

I'm pretty sure the EQUALITY match is not correct, but again, it works for what I need it for.

I also changed the following to object classes in the same schema (Note: I added the cn bit).

objectclass (1.3.6.1.4.8324.2.2.7 NAME 'ucsClientForm'
MUST ( cn $ includesClasses ) )

objectclass (1.3.6.1.4.8324.2.2.10 NAME 'ucsClientTemplateInfo'
MUST ( cn $ includesClasses )
MAY ( clearFields ) )

And that's it. If you have something similar I hope this helped because I know how frustrating it can be - good luck.

Bruce