[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Version 2.1.2 : smba.schema doesn't work anymore ?

To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: Version 2.1.2 : smba.schema doesn't work anymore ?
From: Guenther Deschner <guenther.deschner@suse.de>
Date: Thu, 13 Jun 2002 12:58:20 +0200
Cc: Harry Rüter <harry_rueter@gmx.de>, "OpenLDAP-software@OpenLDAP.org" <OpenLDAP-software@OpenLDAP.org>
Content-disposition: inline
In-reply-to: <5.1.0.14.0.20020612151923.02461890@127.0.0.1>
References: <3D07C19A.CF9D375A@gmx.de> <5.1.0.14.0.20020612151923.02461890@127.0.0.1>
User-agent: Mutt/1.4i

On Wed, Jun 12, 2002 at 03:37:07PM -0700, Kurt D. Zeilenga wrote:
> At 02:48 PM 2002-06-12, Harry Rüter wrote:
> >-----------snipp-----------
> >09:02:02 PM: Failed to add new entry
> >uid=emu,ou=Mitarbeiter,o=Demofirma, dc=hrnet,dc=de
> >Root error: [LDAP: error code 65 - invalid structural object
> >class chain (inetOrgPerson/sambaAccount)]
> 
> An object cannot structurally be both an inetOrgPerson and
> a sambaAccount.    If you want the object to belong to both
> inetOrgPerson and sambaAccount classes, then it structurally
> needs to of a class which inherits (directly or indirectly)
> from both inetOrgPerson and a sambaAccount.
> 
> >09:02:03 PM: Failed to add new entry
> >uid=admin,ou=ldap,o=myorganization, dc=hrnet,dc=de
> >Root error: [LDAP: error code 65 - no structural object
> >classes provided]
> 
> All object must have structure.
> 
> Kurt

current samba CVS addresses this:
http://pserver.samba.org/cgi-bin/cvsweb/samba/examples/LDAP/samba.schema.diff?r1=1.1.2.12&r2=1.1.2.13&f=h

from the schema.diff:
-----8<------------------snip--------------8<--------------
 
-objectclass ( 1.3.6.1.4.1.7165.2.2.2 NAME 'sambaAccount' SUP top
STRUCTURAL
-       DESC 'Samba Account'
+#objectclass ( 1.3.6.1.4.1.7165.2.2.2 NAME 'sambaAccount' SUP top
STRUCTURAL
+#      DESC 'Samba Account'
+#      MUST ( uid $ rid ) 
+#      MAY  ( cn $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $
+#               logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $
acctFlags $ 
+#               displayName $ smbHome $ homeDrive $ scriptPath $
profilePath $
+#               description $ userWorkstations $ primaryGroupID $ domain
))
+
+## The X.500 data model (and therefore LDAPv3) says that each entry can 
+## only have one structural objectclass.  OpenLDAP 2.0 does not enforce 
+## this currently but will in v2.1
+
+objectclass ( 1.3.6.1.4.1.7165.2.2.3 NAME 'sambaAccount' SUP top
AUXILIARY
+       DESC 'Samba Auxilary Account'
        MUST ( uid $ rid ) 
        MAY  ( cn $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $
                logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $
acctFlags $ 
----->8------------------snap-------------->8--------------

hth,
guenther

-- 
Guenther Deschner                          guenther.deschner@suse.de
SuSE Linux AG                                        GnuPG: 8EE11688
Berliner Str. 27                      phone:  +49 (0) 30 / 430944778
D-13507 Berlin                           fax:  +49 (0) 30 / 43732804

Attachment: pgpnK7One0zJ8.pgp
Description: PGP signature

References:
- Version 2.1.2 : smba.schema doesn't work anymore ?
  - From: Harry Rüter <harry_rueter@gmx.de>
- Re: Version 2.1.2 : smba.schema doesn't work anymore ?
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Php and OpenLDAP: "attribute type undefined" error
Next by Date: Re: Import from SAMBA to LDAP
Index(es):
- Chronological
- Thread