[Date Prev][Date Next] [Chronological] [Thread] [Top]

Anyone using directory_administrator?

To: openldap-software@OpenLDAP.org, pamldap@padl.com
Subject: Anyone using directory_administrator?
From: Eric.Sammons@frit.frb.org
Date: Thu, 15 Jan 2004 14:53:34 -0500

I have implemented directory_administrator and after adding the allow bind_v2 entry to my configuration file I am now able to use the tool. However, when I attempt to modify a user I of course make my changes and select OK. At this point I receive an error:

Error: Cannot Modify object class.

In the console I receive the following:

LDAP_MOD_DELTE objectclass
account
LDAP_MOD_ADD objectclass
organizationalPerson
inetOrgPerson

Any ideas where to look or what might be causing this?

This is my slapd.conf, at least the part that matters as I already know the connection is working....

include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/ns-pwd-policy.schema

pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd/slapd.args

access to dn=".*,dc=frb,dc=org" attr=shadowLastChange
by dn="cn=Manager,dc=frb,dc=org" write
by self write
by * read

access to dn=".*,dc=frb,dc=org" attr=userPassword
by dn="cn=Manager,dc=frb,dc=org" write
by self write
by * read

access to dn=".*,dc=frb,dc=org"
by self write
by users auth
by * read

And to eliminate what will likely be the most popular answer, I have posted this question to the Directory_Administrator email list as well. I am simply hoping that someone, anyone has seen this before and knows how to fix it.

Thanks!
Eric Sammons
(804)697-3925
FRIT - Unix Systems

Follow-Ups:
- Re: Anyone using directory_administrator?
  - From: Peter Marschall <peter@adpm.de>

Prev by Date: Re: Initial 2.2.4 exploration results
Next by Date: Re: LDAP TWiki
Index(es):
- Chronological
- Thread