[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Unique overlay confusing

To: Michael Ströder <michael@stroeder.com>
Subject: Re: Unique overlay confusing
From: Ervin Hegedüs <airween@gmail.com>
Date: Mon, 27 Aug 2018 10:29:01 +0200
Cc: openldap-technical@openldap.org
Content-disposition: inline
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:content-transfer-encoding:in-reply-to :user-agent; bh=nFkOC2jc2UtDEIELTkM9nRZL6tds7/GUSIBmDlQFi5o=; b=umO8MBHqigu5tjOHRl0uBQEX1ozD4BWjM2AmPnsGAPLmhqV93FqF5p1daApxoHH7vY pVGsyYuWN9jw4P/9KA5OgY7wysMKCF0NVPvX4bZa6sfyGq9r7OZJGCdTV6BpiAvJHnpF TV3I2iVY9CRf+eNHwyoL3C6b7m9c9k6J2Nklz5n+xcQl4TNvEqckFXGHtagP1HWiIboD 8jNGPsrx8HP8sJV0aT6Vgy8O/qqBAmHMMaCYWEH1IVX/RWOtJcEUg7rPvDO70VOZGm8Y Bb18z7HgrDqRNiEEJGEpaPwbBltHjfDVhr2oudjbRtBaFyBaDL7NQuqneml8pJzGc39Z Uchg==
In-reply-to: <cc2a7009-9b78-e41f-b98f-114994ccb936@stroeder.com>
References: <20180808092519.GA31393@arxnet.hu> <2077b33e-882d-5691-a816-3eb254220aac@stroeder.com> <20180808104647.GA11344@arxnet.hu> <cc2a7009-9b78-e41f-b98f-114994ccb936@stroeder.com>
User-agent: Mutt/1.5.24 (2015-08-30)

Hi,

sorry for the re-post, but could anybody helps me, how can I
fix this problem?

On Wed, Aug 08, 2018 at 12:51:53PM +0200, Michael Ströder wrote:
> On 8/8/18 12:46 PM, Ervin Hegedüs wrote:
> >On Wed, Aug 08, 2018 at 12:36:06PM +0200, Michael Ströder wrote:
> >>*and*
> >>re-index the DB?
> >
> >no. (never)
> 
> Please check whether the search (mail=foo@example.com) really returns the
> existing entries.

# slapcat -b cn=config | grep -i olcdbindex
olcDbIndex: objectClass eq
olcDbIndex: cn,uid eq
olcDbIndex: uidNumber,gidNumber eq
olcDbIndex: member,memberUid eq
olcDbIndex: mail eq
olcDbIndex: sn eq

# slapcat -b cn=config | grep -i overlay   
dn: olcOverlay={0}syncprov,olcDatabase={0}config,cn=config
objectClass: olcOverlayConfig
olcOverlay: {0}syncprov
dn: olcOverlay={0}syncprov,olcDatabase={1}mdb,cn=config
objectClass: olcOverlayConfig
olcOverlay: {0}syncprov
dn: olcOverlay={1}unique,olcDatabase={1}mdb,cn=config
objectClass: olcOverlayConfig
olcOverlay: {1}unique

# ldapsearch -vvv -x -H ldaps://dev-ldap-01:636 -b "dc=hu" -D "UID=_srvcppm,OU=Users,ou=_srv,dc=hu" -W "(mail=airween@company.hu)" 
...
# airween, Users, Administrator, service.customer.hu
dn: uid=airween,ou=Users,ou=Administrator,dc=service,dc=customer,dc=hu
uidNumber: 20001
gidNumber: 10000
...
sn: airween
mail: airween@company.hu

# dgw_airween, Users, Partner, othercustomer.hu
dn: uid=dgw_airween,ou=Users,ou=Partner,dc=othercustomer,dc=hu
uidNumber: 11297
gidNumber: 21297
...
sn: dgw_airween
mail: airween@company.hu

# search result
search: 2
result: 0 Success

# numResponses: 3
# numEntries: 2


slapindex was finished (before I searched above...):

# service slapd stop
# slapindex -F /etc/ldap/slapd.d -n 1 mail sn cn uidNumber uid 

WARNING!
Runnig as root!
There's a fair chance slapd will fail to start.
Check file permissions!

# chown -R openldap:openldap /etc/ldap/slapd.d && chown -R openldap:openldap /var/lib/ldap
# service slapd start
...





Thanks,


a.

References:
- Unique overlay confusing
  - From: Ervin Hegedüs <airween@gmail.com>
- Re: Unique overlay confusing
  - From: Michael Ströder <michael@stroeder.com>
- Re: Unique overlay confusing
  - From: Ervin Hegedüs <airween@gmail.com>
- Re: Unique overlay confusing
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: Q: Co-existence of OpenLDAP and 389 Directory Server?
Next by Date: Recommended way to transfer data from one cluster to the other?
Index(es):
- Chronological
- Thread