[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: adding VLV support to OpenLDAP 2.4.31

To: Igor Shmukler <igor.shmukler@gmail.com>
Subject: RE: adding VLV support to OpenLDAP 2.4.31
From: Chris Card <ctcard@hotmail.com>
Date: Wed, 12 Nov 2014 08:53:14 +0000
Cc: Dieter Klünter <dieter@dkluenter.de>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Importance: Normal
In-reply-to: <CAA1SNA0OMJHtTLLDT+E7iq3XqOWkfOEjSSYW7P63RdCFsxmR2g@mail.gmail.com>
References: <CAA1SNA1r97gWVndsWgOoWiGNY1gk=7OgR_Z8H-YOWKx9ktgyNQ@mail.gmail.com>, <9BB550B721F973BAEDD53126@quanah-mac.local>, <CAA1SNA3FMOhOtZmJ6ovZKyZDGWe2m45OrhDeEVdMTf+6mxjemw@mail.gmail.com>, <20141111224120.GH28396@slab.skills-1st.co.uk>, <CAA1SNA1LhpYCQ-3jjOybgkJ6P_sbfW=_L+vdjqnc1K=0xLNjHw@mail.gmail.com>, <5C3C0FF875994F94AC26A27E@quanah-mac.local>, <CAA1SNA3RY5=xfRcXCB5utkoyf4wCWH4MQsg_Md3UU16XrbSfPA@mail.gmail.com>, <20141112070955.7ace4df6@pink.avci.de>, <CAA1SNA0hd9PvxP9m0gXO6CX0jxoGJqv5sFaDqo0UB3MG8Zgopw@mail.gmail.com>, <DUB125-W3EF825FBAAE57B9B8A5F9CC8E0@phx.gbl>, <CAA1SNA0OMJHtTLLDT+E7iq3XqOWkfOEjSSYW7P63RdCFsxmR2g@mail.gmail.com>



>
> On Wed, Nov 12, 2014 at 10:38 AM, Chris Card <ctcard@hotmail.com> wrote:
>>
>>> It is clear from the man slapo-sssvlv(5) page that when slapd.conf is
>>> being used, the options should appear after the overlay directive.
>>> Even I got this. Where those options should go when cn=config is used?
>>> I do not understand it from the man page. Is this something to be
>>> specified using ldapmodify?
>>
>> You need to use ldapadd with ldif like this:
>>
>> dn: olcOverlay=sssvlv,olcDatabase={1}bdb,cn=config
>> objectClass: olcSssVlvConfig
>> olcOverlay: sssvlv
>> olcSssVlvMax: 10
>> olcSssVlvMaxKeys: 5
>>
>> something like
>>
>> ldapadd -x -w <password> -D cn=config -f <ldif file>
>>
>
> Thank you Chris,
>
> This is exactly what I needed.
> Should I put the leif file into the
> /etc/ldap/slapd.d/cn=config/cn=schema directory or
> /etc/ldap/slapd.d/cn\=config/ directory? What is the recommended
> place?
> [I see that -D is to specify binddn, yet I am not sure whether LDIF
> should go there. Sorry for being stupid.]
>
Don't update anything under /etc/ldap/slapd.d/cn\=config by hand!

The configuration is held in an LDAP directory with suffix cn=config, and
you add stuff to it in exactly the same way as any other LDAP directory, 
using ldapadd, ldapmodify etc.

The fact that you can see files under /etc/ldap/slapd.d/cn=config is just
an artifact of the implementation of the cn=config db in openldap, and I believe
it is planned to change the implementation in the future.

Chris

Follow-Ups:
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Igor Shmukler <igor.shmukler@gmail.com>

References:
- adding VLV support to OpenLDAP 2.4.31
  - From: Igor Shmukler <igor.shmukler@gmail.com>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Quanah Gibson-Mount <quanah@zimbra.com>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Igor Shmukler <igor.shmukler@gmail.com>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Andrew Findlay <andrew.findlay@skills-1st.co.uk>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Igor Shmukler <igor.shmukler@gmail.com>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Quanah Gibson-Mount <quanah@zimbra.com>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Igor Shmukler <igor.shmukler@gmail.com>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Dieter Klünter <dieter@dkluenter.de>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Igor Shmukler <igor.shmukler@gmail.com>
- RE: adding VLV support to OpenLDAP 2.4.31
  - From: Chris Card <ctcard@hotmail.com>
- Re: adding VLV support to OpenLDAP 2.4.31
  - From: Igor Shmukler <igor.shmukler@gmail.com>

Prev by Date: Re: adding VLV support to OpenLDAP 2.4.31
Next by Date: Re: adding VLV support to OpenLDAP 2.4.31
Index(es):
- Chronological
- Thread