[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: One root and two domain?
- To: openldap-technical <openldap-technical@openldap.org>
- Subject: Re: One root and two domain?
- From: gael therond <gael.therond@gmail.com>
- Date: Sun, 16 Jan 2011 21:11:43 +0100
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; bh=//XfdgaprLKjLqlPRpgIKClRNJfxdsMOCRRtCC3ONx0=; b=QgXCxKraGNtZzT1a0WPxHMnn9ls5bIEW1H54CF/8mXrWzhCPQy+sPIt44RfzTIDmQB 2jdmjF862QGid+/EoKRO4rmnhq/Tcc45/416VE1tj8vHYONnQcwFd1J8P3AhyaRQSezW YvJFr7F/3dYx2tSpRFBK7wH8E3HHnQeTqd3fg=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=kvmSY+VbBUIpp7J034dO5ITQnI7BcCI3TiYQeSHsFnhVzvXFbq8ZPFJ21xsMQy9ZDt DMXjf7UTdvmAJWVHgrVmratLnRYz/B6ArP4n1ASz5kOY1WRLrLhNF1rpgjwq5BAF1OXM 3UilKTKK4ofvcBajNd1xZmKaM3B6o74CAV1Jw=
- In-reply-to: <4D2DC595.4030906@aero.polimi.it>
- References: <AANLkTinxG_W4QQA5-vA587CN1FtYLf7TTUUchNP1DfTh@mail.gmail.com> <4D2DC595.4030906@aero.polimi.it>
2011/1/12 Pierangelo Masarati
<masarati@aero.polimi.it>
gael therond wrote:
Is it possible to add a domain on an already existing root?
I got the following root for now:
dc=lab,dc=corp
and I want to create a second Top entry on my root which will be named like
this:
dc=prod,dc=corp
Is that possible?
<existing>
database <type>
#...
suffix "dc=lab,dc=corp"
</existing>
<new1>
database <type>
#...
suffix "dc=lab,dc=corp"
suffix "dc=prod,dc=corp"
</new1>
However, as far as I remember, back-bdb and back-hdb only support this when compiled with a special #define, and at some performance cost. A more straightforward solution would be to define
<new1>
database <type>
#...
suffix "dc=corp"
</new1>
and then add "dc=corp" as the root entry, and "dc=lab,dc=corp" and "dc=prod,dc=corp" as regular children entries of it.
I've try the following syntaxe without succes.
Racine.ldif:
#Racine
dn: dc=prod, dc=corp
ObjectClass: Top
ObjectClass: dcObject
ObjectClass: organization
o: prod.corp
dc: prod
#OU Groups
dn: ou=groups, dc=prod, dc=geka
ObjectClass: organizationalUnit
ObjectClass: top
ou: groups
#OU Users
dn: ou=users, dc=prod, dc=geka
ObjectClass: organizationalUnit
ObjectClass: top
ou: users
And then I've done the usual LdapADD command, but with the following error
returned:
ldap_add: Server is unwilling to perform (53)
Additional info: No global Superior Knowledge.
Well, my guest is that I didn't set correctly Slapd because my default root
is lab.corp instead of being TLD .corp
Is that theory right?
p.
Many thanks,
As you said, I've re-read the manual and yes it's recommend to use a new database entry.
Once again, you're right I'm using the BDB backend on my LDAP.
Your last solution is exactly what I'm looking for, have a root named Corp and two distinct children named Lab and Prod As we done with Active Directory (One forest with multiple domain on it).
Many thanks Once Again.
Problem Solved!!