Re: Adding Objectclass account gives object class violation

[Buchan Milne <bgmilne@staff.telkomsa.net>]

On Thursday, 15 April 2010 12:11:02 Shamika Joshi wrote:
> Great it worked! Thanks alot Adam!
> 
> sudo ldapadd -x -W -c -D "cn=admin,cn=config" -f hostobject.ldif

Why didn't you use the ldapns.schema that is provided by pam_ldap, using 
correct OIDs and everything?

I guess because Ubuntu, while shipping with cn=config, doesn't document how to 
convert .schema format schemas to ldif format? That's no reason to use random 
schemas, when appropriate ones already exist.

I have attached a version in ldif.

Regards,
Buchan

dn: cn={2}ldapns
objectClass: olcSchemaConfig
cn: {2}ldapns
olcAttributeTypes: {0}( 1.3.6.1.4.1.5322.17.2.1 NAME 'authorizedService' DESC 
 'IANA GSS-API authorized service name' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.
 1.4.1.1466.115.121.1.15{256} )
olcObjectClasses: {0}( 1.3.6.1.4.1.5322.17.1.1 NAME 'authorizedServiceObject' 
 DESC 'Auxiliary object class for adding authorizedService attribute' SUP top 
 AUXILIARY MAY authorizedService )
olcObjectClasses: {1}( 1.3.6.1.4.1.5322.17.1.2 NAME 'hostObject' DESC 'Auxilia
 ry object class for adding host attribute' SUP top AUXILIARY MAY host )