Chris S wrote:
> Paul Kölle wrote:
>
>> please post the ldif containing the entries for you intended base, I'll
>>
>> give it a shot.
>>
>>
> Hi Paul,
> Sorry for the delay.. been super busy.
>
> As previously mentioned, it's the base that I can't create with 3 dc
> levels, however I can get around it by creating base level of two, then
> adding the third dc, then switching the base back to 3 levels (although
> this doesn't "feel" clean). All the same, here's my configuration. Any
> pointers, slaps around the head appreciated.
>
> openldap 2.2.26 emerged and configured
>
> searching is successful:
>
> *code*
> dually # ldapsearch -D "cn=Manager,dc=domain,dc=net,dc=au" -W -x
> Enter LDAP Password:
> # extended LDIF
> #
> # LDAPv3
> # base <> with scope sub
> # filter: (objectclass=*)
> # requesting: ALL
> #
>
> # search result
> search: 2
> result: 32 No such object
>
> # numResponses: 1
Again, this is NOT a successful search, there are no results.
> */code*
>
> here is my base.ldif:
>
> *code*
> dn: dc=net,dc=au
^^^^^^^^^^^^^^^^^^
> when I try and insert it:
>
> *code*
> dually / # ldapadd -D "cn=Manager,dc=domain,dc=net,dc=au" -W -f
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> /tmp/base.ldif -x
> Enter LDAP Password:
> adding new entry "dc=net,dc=au"
> ldap_add: Server is unwilling to perform (53)
> additional info: no global superior knowledge
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>From your ldapadd line, I assume you have in slapd.conf:
database bdb
suffix dc=domain,dc=net,dc=au
The thing you probably missed: You don't need to and you are not allowed
to add entries *below* the "suffix" from slapd.conf as it could be
another suffix. If you try to add something like: "dn: dc=net,dc=au"
slapd searches for *immediate parents* (here: dc=au) to that entry,
either in the directory or for a "suffix" line in slapd.conf (remember,
its a tree). If it couldn't find one you get the "no global superior
knowledge" error or an "already exists" if the enty is already there.
Solution:
ldif
dn: dc=domain,dc=net,dc=au
dc=domain
objectClass: top
objectClass: dcObject
objectClass: domain
objectClass: domainRelatedObject
associatedDomain: domain.net.au
dn: ou=users,dc=domain,dc=net,dc=au
ou: users
objectClass: top
objectClass: organizationalUnit
objectClass: domainRelatedObject
associatedDomain: domain.net.au
end ldif
slapd.conf
database bdb
suffix dc=domain,dc=net,dc=au
rootdn cn=manager,dc=domain,dc=net,dc=au
rootpw not24get
directory /var/lib/openldap-data
index objectClass eq
end slapd.conf
of course this is just the configuration for that backend, you'll need
more info in slapd.conf for your server to run properly.
cheers
Paul
--
[email protected] mailing list
