On 4/12/11 10:08 AM, Hallvard B Furuseth wrote:
No, you can't if you want to use the syntax for AttributeType/OvjecClass. You have to use a specific LDIF format, and this is the key we were discussing with some peeps : how to modify schema for existing Ldap server in a portable way (more specifically, it would be useful in Apache Directory Studio).Ok, get it. It would be cool (tm) that OpenLDAP accepts direct modifications of the schema through LDAP requests.Eh? You can, that's why cn=config exists. Just set up some DN to have write access to it. Normally a rootdn for database config.
Of course, using a LDIF format with olcXXX AT is working, but it's non standard.
As I said, it would be very cool if OpenLDAP were allowing the schema modification through direct LDAP modify request on cn=subschema... (of course, ths has many implication : saving the data into cn=schema, make the server switch the schema internally without restarting it, etc, etc...)
Not a piece of cake ! -- Regards, Cordialement, Emmanuel LÃcharny www.iktek.com