> On Aug 1, 2016, at 3:01 PM, Ted Haynes <[email protected]> > wrote: > > I am trying to configure fortress to use openldap that comes with centos 6 > and not the Symas OpenLDAP. When I am trying to build the directory > information tree using the these maven commands, I get lots of errors around > this using multiple namingContexts. > mvn install -Dload.file=./ldap/setup/refreshLDAPData.xmlmvn install > -Dload.file=./ldap/setup/DelegatedAdminManagerLoad.xml > From what I can tell, OpenLDAP only wants a single naming context. I can't > find the configuration files to change to use my namingContext (dc=company, > dc=com) instead of the ou=schema, ou=config, ou=system. How do I change these? > [startAnt] [FortressAdmin] 2016-08-01 15:39:19,832 (INFO ) create dn > [cn=DEFAULT,ou=Config,dc=staples,dc=com] [startAnt] [FortressAdmin] > 2016-08-01 15:39:19,838 (ERROR) create config dn > [cn=DEFAULT,ou=Config,dc=company,dc=com] caught LDAPException=objectClass: > value #1 invalid per syntax [startAnt] [FortressAdmin] > org.apache.directory.api.ldap.model.exception.LdapInvalidAttributeValueException: > objectClass: value #1 invalid per syntax > > [startAnt] [FortressAdmin] 2016-08-01 15:39:19,839 (INFO ) addConfig realm > name [TOMCAT] [startAnt] [FortressAdmin] 2016-08-01 15:39:19,840 (INFO ) > create dn [cn=TOMCAT,ou=Config,dc=staples,dc=com] [startAnt] [FortressAdmin] > 2016-08-01 15:39:19,847 (ERROR) create config dn > [cn=TOMCAT,ou=Config,dc=company,dc=com] caught LDAPException=objectClass: > value #1 invalid per syntax [startAnt] [FortressAdmin] > org.apache.directory.api.ldap.model.exception.LdapInvalidAttributeValueException: > objectClass: value #1 invalid per syntax
Hi Ted, looks as though you haven’t applied the fortress schema per the https://github.com/apache/directory-fortress-core/blob/master/README.md SECTION 7. Instructions for configuring OpenLDAP 2. Copy fortress schema to openldap schema folder: cp FORTRESS_HOME/ldap/schema/fortress.schema OPENLDAP_HOME/etc/openldap/schema 3. Edit slapd.conf: vi OPENLDAP_HOME/etc/openldap/slapd.conf 4. Enable Fortress schema. Add to the top of the file: include OPENLDAP_HOME/etc/openldap/schema/fortress.schema *** After that you can change the suffix from dc=example,dc=cpm by updating these settings in the slapd.properties file and re-running mvn install (before rerunning load scripts) in order to push the new params down into the fortress.properties and refreshldap.xml script. ######################################################################## # 1. OVERRIDE WITH OPENLDAP SPECIFIC COORDINATES: #################################################################################### ldap.server.type=openldap ldap.host=localhost ldap.port=389 suffix.name=example suffix.dc=com suffix=dc=${suffix.name},dc=${suffix.dc} root.dn=cn=Manager,${suffix} # Used to load OpenLDAP admin root password in slapd.conf and was encrypted using 'slappasswd' command: root.pw={SSHA}pSOV2TpCxj2NMACijkcMko4fGrFopctU cfg.root.pw=secret
