[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Problems and Difficulties
- To: dclement <dclement@mines.edu>
- Subject: Re: Problems and Difficulties
- From: Turbo Fredriksson <turbo@nocrew.org>
- Date: 14 Aug 2000 20:31:45 +0200
- Cc: openldap-software@OpenLDAP.org
- In-reply-to: dclement's message of "Thu, 22 Jun 2000 06:55:42 -0500"
- Organization: LDAP expert wannabe
- References: <3.0.5.32.20000620081717.00990100@infidel.boolean.net> <3.0.5.32.20000622060103.00a16430@infidel.boolean.net> <3951FEBE.9CA520F7@mines.edu>
- User-agent: Gnus/5.0804 (Gnus v5.8.4) Emacs/20.6
Quoting dclement <dclement@mines.edu>:
> dn: o=penguin206.tcs.tulane.edu
> o: penguin206.tcs.tulane.edu
> objectclass: organization
> objectclass: dcObject
>
> dn: cn=Manager, o=penguin206.tcs.tulane.edu
> cn: Manager
> sn: Manager
> objectclass: person
If I read the file '/etc/openldap/slapd.oc.conf' (Debian GNU/Linux)
and check the objectclass 'dcObject' it requires 'dc'...
Maybe change the dn above to 'dc=penguin206,dc=tcs,dc=tulane,dc=edu'
and add the leading dc objects will work?
I'm not shure, but I think it's not recomended (?) to use
'dc=penguin206.tcs.tulane.edu'...
If starting with a base (ie empty) db, use this ldif and add it
with ldif2ldbm...
----- s n i p -----
dn: dc=edu
dc: edu
objectclass: top
objectclass: domain
dn: dc=tulane,dc=edu
dc: tulane
objectclass: top
objectclass: domain
dn: dc=tcs,dc=tulane,dc=edu
dc: tcs
objectclass: top
objectclass: domain
dn: dc=penguin206,dc=tcs,dc=tulane,dc=edu
dc: penguin206
objectclass: top
objectclass: domain
dn: cn=Manager,dc=penguin206,dc=tcs,dc=tulane,dc=edu
cn: Manager
objectclass: top
userPassword: {crypt}SomeCryptedPassword
----- s n i p -----
then add the ACL
access to *
by dn="cn=Manager,dc=penguin206,dc=tcs,dc=tulane,dc=edu" write
to your slapd.conf.
> Tulane University
Why not use the organisation system instead?
cn=Manager,ou=People,o=Tulane University,c=US
or wherever this is located :)