[Date Prev][Date Next] [Chronological] [Thread] [Top]

syncrepl and structuralObjectClass operational attribute

To: openldap-technical@openldap.org
Subject: syncrepl and structuralObjectClass operational attribute
From: Jehan PROCACCIA <Jehan.Procaccia@it-sudparis.eu>
Date: Thu, 22 Mar 2012 18:43:16 +0100
Organization: Telecom et Management SudParis.
User-agent: Mozilla/5.0 (X11; Linux i686; rv:8.0) Gecko/20111115 Thunderbird/8.0

Hello

I installed a new openldap replica(openldap-servers-2.4.23-20.el6.i686) , with a partial replicationenabled by restricting certain branches/attributes to the binddnaccount that replicate from the master.However, on some operation (modify userPassword for example) themodification fails:

Mar 22 17:51:20 ldapz2 slapd[24456]: No structuralObjectClass for entry(uid=bde,ou=People,dc=int-evry,dc=fr)Mar 22 17:51:20 ldapz2 slapd[24456]: entry failed schema check: nostructuralObjectClass operational attribute

Mar 22 17:51:20 ldapz2 slapd[24456]: null_callback : error code 0x50

Mar 22 17:51:20 ldapz2 slapd[24456]: syncrepl_entry: rid=001 be_modifyfailed (80)Mar 22 17:51:20 ldapz2 slapd[24456]: do_syncrepl: rid=001 rc 80 retrying(9 retries left)


what's wrong ?

could it be related to the fact that the binddn account cannot read allattributes from the master ?

I did checked that he can read userpassword attribute though .

is there an ACL to be set to hte replica binddn account to allow him toread operational attributes ?


thanks for your help.

Follow-Ups:
- Re: syncrepl and structuralObjectClass operational attribute
  - From: Marvin Mundry <marvin.mundry@rrz.uni-hamburg.de>

Prev by Date: Line breaks in Directory String values (was: Concerns with OLC (cn=config) for editing schema, ACLs, and deleting entries)
Next by Date: RE: OPENLDAP & SSL -- FOR FAILOVER
Index(es):
- Chronological
- Thread