begging for help

Kenneth Hawkins kjurkic at yahoo.ca
Sat Mar 7 00:20:29 UTC 2009


AND HERE WE GO AGAIN...this is what I mean about these effing how-to's....used ldif right off the link (copy & paste) provided, again the only change being the domain:

------------------------------------------------------------------------------------
bmsadmin at LDAP:~$ sudo slapadd -l ldif2.ldif
/etc/ldap/slapd.conf: line 114: rootdn is always granted unlimited privileges.
/etc/ldap/slapd.conf: line 131: rootdn is always granted unlimited privileges.
Error, entries missing!
  entry 1: dc=bms,dc=bc,dc=ca
------------------------------------------------------------------------------------

Do the authors ever even test this stuff before they post? 

I got the ldif to import successfully after I wrote a dn statement (copied from my original ldif file); which tells me that the example ldif was borked in the first place - nothing to do with my domain. A domain of some kind has to be declared before anything else in the ldif.

This STILL doesn't include the admin account information that I need to have working in LDAP...grrrrrr.

I know that many will argue that you learn more if you don't have the answer on a silver platter....but I need this to work, or I might as well setup a windows AD server and call it a day...This is the kind of crap that can deter many admins away from linux......

sorry for the rant

Ken
PS at the end of the day, I really want to be able to export an LDAP from Mac OSX server, onto a stand-alone authenticator, built on ubuntu. But you should see the the hash that Apple makes of LDAP.......A whole schwack of apple.schema extentions.....so much for adhering to open standards....





________________________________
From: Kenneth Hawkins <kjurkic at yahoo.ca>
To: The Canadian Ubuntu Users Community <ubuntu-ca at lists.ubuntu.com>
Sent: Friday, March 6, 2009 3:48:16 PM
Subject: Re: begging for help


Thanks for the alternate link, Ryan
will see if that ldif example works better.

AFAICT, the line count starts at 1; I have seen similar complaints with importing ldif's, and when I corrected other glitches, it was always on a line number where the line count starts at 1.

regards
Ken






________________________________
From: Ryan Steele <rgsteele at gmail.com>
To: The Canadian Ubuntu Users Community <ubuntu-ca at lists.ubuntu.com>
Sent: Friday, March 6, 2009 3:24:24 PM
Subject: Re: begging for help

On Fri, Mar 6, 2009 at 2:41 PM, Kenneth Hawkins <kjurkic at yahoo.ca> wrote:
> Thanks Andy
>
> I wish I was even this far along (to do queries). I can't even import a
> basic ldif to populate my LDAP, without running into errors.
>
> Here's an example:

snip

> bmsadmin at LDAP:/root$ sudo slapadd -l init.ldif
> /etc/ldap/slapd.conf: line 114: rootdn is always granted unlimited
> privileges.
> /etc/ldap/slapd.conf: line 131: rootdn is always granted unlimited
> privileges.
> str2entry: invalid value for attributeType objectClass #1 (syntax
> 1.3.6.1.4.1.1466.115.121.1.38)
> slapadd: could not parse entry (line=7)
>
> So I opened the source file (ldif):
>
> 1:    dn:     dc=bms,dc=bc,dc=ca
> 2:    objectClass:    dcObject
> 3:    objectClass:    organizationalUnit
> 4:    dc:     bms
> 5:    ou:     Bamfield Marine Science Centre
> 6:
> 7:    dn:     cn=admin,dc=bms,dc=bc,dc=ca *****nothing wrong with this line
> AFAICT
> 8:    objectClass:    simpleSecurityObject

Judging by the error message, it looks like the issue is actually with
line 8. Not sure if that's because slapadd uses zero-indexed line
numbers or if it skips blank lines.

I'm not an OpenLDAP expert, so I can't provide any specific
assistance, but I found this document, which might be more up-to-date
than the wiki:

https://help.ubuntu.com/8.04/serverguide/C/openldap-server.html

-- 
Ryan Steele - rgsteele at gmail.com

-- 
ubuntu-ca mailing list
ubuntu-ca at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-ca
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-ca/attachments/20090306/f2b85c76/attachment.html>


More information about the ubuntu-ca mailing list