[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: v2.2.24 structural object class modification not allowed

To: Quanah Gibson-Mount <quanah@stanford.edu>
Subject: Re: v2.2.24 structural object class modification not allowed
From: Curt Blank <Curtis.Blank@curtronics.com>
Date: Fri, 29 Apr 2005 08:49:26 -0500
Cc: openldap-software@OpenLDAP.org
In-reply-to: <9808EACAA3982CD3A474F56A@cadabra-dsl.stanford.edu>
References: <4256CBE6.40604@uwm.edu> <4256FC6D.3060407@sys-net.it> <42573649.3000606@curtronics.com> <42576A54.3070403@sys-net.it> <426176AB.9030605@curtronics.com> <42655392.1080908@uwm.edu> <4266A504.3050003@uwm.edu> <4266B983.2070809@uwm.edu> <4269F64A.8000601@uwm.edu> <426A4F4D.8050306@symas.com> <426D01C9.3040702@uwm.edu> <426D0E8B.4050906@symas.com> <426D178C.2070408@uwm.edu> <426D1B56.4080201@symas.com> <426D2386.5040601@uwm.edu> <426DF07E.3040901@curtronics.com> <42714062.4060704@uwm.edu> <9808EACAA3982CD3A474F56A@cadabra-dsl.stanford.edu>
User-agent: Mozilla Thunderbird 1.0 (Windows/20041206)

Quanah Gibson-Mount wrote:

--On Thursday, April 28, 2005 2:58 PM -0500 Curt Blank <curt@uwm.edu> wrote:
Got this when trying to add a user to our Calendar application that
writes to LDAP:
Apr 28 14:37:19 ldap01 slapd[31502]: entry failed schema check:
structural object class modification from 'uwmPerson' to 'ctCalUser' not
allowed
Apr 28 14:37:19 ldap01 slapd[31502]: conn=155 op=5 RESULT tag=103 err=69
text=structural object class modification from 'uwmPerson to 'ctCalUser'
not allowed
Now my question is, is this modification not allowed because I have not
allowed the Calendar application write access to the
structuralObjectClass attribute, or is it not allowed period?
Obviously new users have this set to uwmPerson when they are added to
LDAP and when added to Calendar this needs to change to ctCalUser because
the ctCalUser objectclass has SUP uwmPerson STRUCTURAL in it.
AFAIK, you cannot change the structural object class of an existing entry. You would need to delete their uwm based person, and then add them as a ctCalUser. Any particular reason you don't design your schema to just use one structuural objectclass? or two inherit from two?

The ctCalUser was supplied by the vendor and used starting with our 2.0.27 install, I had to modify it for 2.2.24 and setting SUP to uwmPerson seemed to work, until I ran into this. I didn't understand until now what setting it to that meant. This was all new in 2.2.24 and I was just trying to make it work like it used too.

We have things like:
SUP ( structural1 $ structural2 )

This seems like a good alternative if I can just make that change to the schema, deleting tens of thousands of users and adding them back in to correct this is not going to be fun if that is what I'm going to have to do. But I got a feeling that is what I'm going to have to do. So where do I actually do the SUP ( structural1 $ structural2 ) I'm by far not an expert on LDAP and when changes like this occur in new versions it really screws thing up.


Then it can use both as structural object classes.

--Quanah

--
Quanah Gibson-Mount
Principal Software Developer
ITSS/Shared Services
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html

"These censorship operations against schools and libraries are stronger
than ever in the present religio-political climate. They often focus on
fantasy and sf books, which foster that deadly enemy to bigotry and blind
faith, the imagination." -- Ursula K. Le Guin

References:
- Moving to 2.2.24 - Problem loading "dn: cn=schema, o=uwm.edu"
  - From: Curt Blank <curt@uwm.edu>
- Re: Moving to 2.2.24 - Problem loading "dn: cn=schema, o=uwm.edu"
  - From: Pierangelo Masarati <ando@sys-net.it>
- Re: Moving to 2.2.24 - Problem loading "dn: cn=schema, o=uwm.edu"
  - From: Pierangelo Masarati <ando@sys-net.it>
- Release Notes
  - From: Curt Blank <Curtis.Blank@curtronics.com>
- slapcat hangs v2.2.24
  - From: Curt Blank <curt@uwm.edu>
- Re: slapcat hangs v2.2.24
  - From: Curt Blank <curt@uwm.edu>
- Re: slapcat hangs v2.2.24
  - From: Curt Blank <curt@uwm.edu>
- Re: slapcat hangs v2.2.24
  - From: Curt Blank <curt@uwm.edu>
- Re: slapcat hangs v2.2.24
  - From: Howard Chu <hyc@symas.com>
- Re: slapcat hangs v2.2.24
  - From: Curt Blank <curt@uwm.edu>
- Re: slapcat hangs v2.2.24
  - From: Howard Chu <hyc@symas.com>
- Re: slapcat hangs v2.2.24
  - From: Curt Blank <curt@uwm.edu>
- Re: slapcat hangs v2.2.24
  - From: Howard Chu <hyc@symas.com>
- Re: slapcat hangs v2.2.24
  - From: Curt Blank <curt@uwm.edu>
- Re: slapcat hangs v2.2.24
  - From: Curt Blank <Curtis.Blank@curtronics.com>
- v2.2.24 structural object class modification not allowed
  - From: Curt Blank <curt@uwm.edu>
- Re: v2.2.24 structural object class modification not allowed
  - From: Quanah Gibson-Mount <quanah@stanford.edu>

Prev by Date: Re-2: SSL problem with self-compiled client
Next by Date: Re: SupportedSASLMechanisms: none
Index(es):
- Chronological
- Thread