[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
access to * by * write (stil I can't delete the root dn)
- To: openldap-software@OpenLDAP.org
- Subject: access to * by * write (stil I can't delete the root dn)
- From: jay alvarez <ldapb0y@yahoo.com>
- Date: Wed, 22 Jun 2005 01:22:20 -0700 (PDT)
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=GJQ8psgT+HIjCu+/cPo5rYjqNnIOv/P5JVaNl1rl+jxWvo1xjgp7XG/ds5L61+AhHFsuEvURgUoUd+7ltwqSsvBggKIkkRmW0tHz6v8C6zaFwxn3uVAFe9Y/MQ/uDxK6scMH1grZ6s0N5yvANQv7kJY/eoN6ipu07hh1Ur6tUyQ= ;
Hi,
Before I only have one problem, that is, no matter
how I authenticate to openldap e.g; using gssapi or
just with a -x option, I still cannot delete my root
dn. It says insufficient privilege. What I wanted to
do is to change the my root dn name. I would like it
to be changed from dc=camlann,dc=pregi,dc=net to
dc=preginet. I can delete all but the root dn. So what
I did was to just delete the whole openldap-data
directory and create another one. Now I have two
problems, slapd won't start. And even if it did, I
cannot add any ldif entry because of the error object
not found. Looking at the debug.log, bdb seems to be
looking for some sort of check point(I can see some
lines containing the old root
dn-dc=camlann,dc=pregi,dc=net). Forgive me for asking
this question here for this might be a bdb question
and not openldap specific, but it just crossed my mind
that there might be some bdb library calls being
created by openldap, and if this is the case, I will
leave this question to openldap programmers.
I've read some berkeley db and seen some notes like
this one regarding locking or some sort of log
checkpoints, but I don't know if it has something to
do with my problem.
Quoting:
"When designing applications that will use the log
subsystem, it is important to remember that the
application is responsible for providing any necessary
structure to the log record. For example, the
application must understand what part of the log
record is an operation code, what part identifies the
file being modified, what part is redo information,
and what part is undo information.... and many more"
Sorry I cannot give you the debug.log because I have
emptied it. I have repeated the process but it didn't
gave me the same log message as before. As I have told
you before, slapd won't even start giving some useful
log messages but now I can make it start, only I can't
do anything when it is started.
I hope you can help me
Thank you very much.
____________________________________________________
Yahoo! Sports
Rekindle the Rivalries. Sign up for Fantasy Football
http://football.fantasysports.yahoo.com