[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: LDIF problem

To: openldap-software@OpenLDAP.org
Subject: RE: LDIF problem
From: "Thomas Broeker" <BROEKER@de.ibm.com>
Date: Tue, 8 Jul 2003 17:11:33 +0200

> (64) value of naming attribute 'principalName' is not present in entry

I finally managed to solve the problem, though the error message doesn't
help.
The error lies in the IBM.schema file:

attributetype  (
  1.3.18.0.2.4.318
  NAME ( 'principalName'  'principal'  )
  DESC 'A naming attribute that may be used to identfiy eUser object
entries.'
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
  USAGE userApplications
  )
ibmattributetype  (
  1.3.18.0.2.4.318
  ACCESS-CLASS normal
  )

If one uses the attributetype 'principalName' in a dn, the error mentioned
above will occure.
To avoid this error, you have to specify a matching rule for the attribute
type.

attributetype  (
  1.3.18.0.2.4.318
  NAME ( 'principalName'  'principal'  )
  DESC 'A naming attribute that may be used to identfiy eUser object
entries.'
  EQUALITY caseIgnoreMatch
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
  USAGE userApplications
  )
ibmattributetype  (
  1.3.18.0.2.4.318
  ACCESS-CLASS normal
  )

Now you can use the attribute in a dn without an error. Obviously OpenLDAP
needs a matching rule for every attribute type that is used in a dn.
I think the errormessage should be changed to something more helpful

---
Thomas Broeker

-------------------------------------------------------------
IBM Deutschland Entwicklung GmbH
Phone: +49-(0)7031-16-2401
eMail: broeker@de.ibm.com

Prev by Date: 1024 threads/connections/file_descriptor limit on linux [solution]
Next by Date: What's the status of collective attributes in LDAP?
Index(es):
- Chronological
- Thread