Re: [Lam-public] sshPublicKey No Such Attribute

Sat, 27 Feb 2021 11:39:35 -0800 

Hi Joshua,
this looks like a bug in Samba 4. It works when adding the public key extension without any key. Afterwards, you can set a key. 


Adding the object class and the key attribute in one LDAP mod add 
operation throws the error. I suggest to contact the Samba 4 mailinglist 
about this issue.



Best regards

Roland



Am 26.02.21 um 17:54 schrieb Joshua Kramer:

Hello,

I am using LAM with Samba4, where Samba4 is acting as a primary Active
Directory DC.  When I add the SSH Public Key module to a user, and
attempt to save the user after adding a key, I get an error: "Was
unable to add attributes to DN: cn=Joshua,DC=test-domain,DC=as.  LDAP
error, server says: No such attribute - acl_modify: attribute
'sshPublicKey' on entry 'cn=Joshua,DC=test-domain,DC=as' was not found
in the schema!"

I added the sshPublicKey attributes via this bit of LDIF.  Where I
have I made a mistake?

dn: CN=sshPublicKey,CN=Schema,CN=Configuration,DC=test-domain,DC=as
changetype: add
objectClass: top
objectClass: attributeSchema
attributeID: 1.3.6.1.4.1.24552.500.1.1.1.13
cn: sshPublicKey
name: sshPublicKey
lDAPDisplayName: sshPublicKey
description: MANDATORY: OpenSSH Public key
attributeSyntax: 2.5.5.10
oMSyntax: 4
isSingleValued: FALSE
objectCategory:
CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=test-domain,DC=as
searchFlags: 8
schemaIDGUID:: cjDAZyEXzU+/akI0EGDW+g==

dn: CN=ldapPublicKey,CN=Schema,CN=Configuration,DC=test-domain,DC=as
changetype: add
objectClass: top
objectClass: classSchema
governsID: 1.3.6.1.4.1.24552.500.1.1.2.0
cn: ldapPublicKey
name: ldapPublicKey
description: MANDATORY: OpenSSH LPK objectclass
lDAPDisplayName: ldapPublicKey
subClassOf: top
objectClassCategory: 3
objectCategory: CN=Class-Schema,CN=Schema,CN=Configuration,DC=test-domain,DC=as
defaultObjectCategory:
CN=ldapPublicKey,CN=Schema,CN=Configuration,DC=test-domain,DC=as
mayContain: sshPublicKey
schemaIDGUID:: +8nFQ43rpkWTOgbCCcSkqA==

Thanks!!


_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public




_______________________________________________
Lam-public mailing list
Lam-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lam-public






















					Reply via email to