Hello all,
I've a strange behavhiour trying to add data in my OpenLdap system :
I've the following attributes to add (including the objectclass) :
<fetchedAttributes>
<string>cn</string>
<string>sn</string>
<string>userPassword</string>
<string>objectClass</string>
<string>uid</string>
<string>uidNumber</string>
<string>givenname</string>
<string>homeDirectory</string>
<string>gidNumber</string>
<string>mail</string>
<string>employeeType</string>
<string>businessCategory</string>
<string>mail</string>
</fetchedAttributes>
dataset declaration 0f my 3 objectclass:
<dataset>
<name>objectClass</name>
<policy>KEEP</policy>
<defaultValues></defaultValues>
<forceValues>
</forceValues>
<createValues>
<string>"top"</string>
<string>"inetOrgPerson"</string>
<string>"posixAccount"</string>
</createValues>
<delimiter>,</delimiter>
</dataset>
But when I try to add a new record into my LDAP system, I get the following
error :
[LDAP: error code 65 - attribute 'gidNumber' not allowed]
According to the following, it seems it doenst create all my objectclass
because only the objectclass 'inetOrgPerson' is displayed :
# Wed Oct 23 13:43:59 CEST 2019
dn:
[email protected],ou=GFBienne,ou=Users,ou=Accounts,dc=gfbienne,dc=lan<mailto:[email protected],ou=GFBienne,ou=Users,ou=Accounts,dc=gfbienne,dc=lan>
changetype: add
uid: [email protected]<mailto:[email protected]>
userPassword: changethis
homeDirectory: /home/gfbienne
employeeType: Lehrer
mail: [email protected]<mailto:[email protected]>
uidNumber: 2733
givenname: First
objectClass: inetOrgPerson
businessCategory: GBSL
cn: First Second
sn: Second
gidNumber: 63000
could it be the <delimiter>,</delimiter> the source of the error ?
Thanks to all
Le 23.10.2019 à 12:05, Soisik Froger a écrit :
On 23/10/2019 11:50, Forster Arnaud, Gymnase francais wrote:
Now, when I'm trying to do the same using the LSC tool I get the following
error :
/oct. 23 11:06:56 - ERROR - Error while adding entry
[email protected],ou=GFBienne,ou=Users,ou=Accounts,dc=gfbienne,dc=lan<mailto:[email protected],ou=GFBienne,ou=Users,ou=Accounts,dc=gfbienne,dc=lan>
in directory :javax.naming.directory.SchemaViolationException: [LDAP: error
code 65 - no objectClass attribute]; remaining name
'[email protected],ou=GFBienne,ou=Users,ou=Accounts<mailto:[email protected],ou=GFBienne,ou=Users,ou=Accounts>'//
Hi,
LSC did not provide any objectClass attributes when trying to create a new
entry, but objectClass is a mandatory attribute in OpenLDAP.
Make sure you have declared a dataSet containing the objectClass attributes you
want to set upon creation, something like this :
<dataset>
<name>objectclass</name>
<policy>KEEP</policy>
<createValues>
<string>"posixAccount"</string>
<string>"inetOrgPerson"</string>
<string>"top"</string>
</createValues>
</dataset>
_______________________________________________________________
Ldap Synchronization Connector (LSC) - http://lsc-project.org
lsc-users mailing list
[email protected]
https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
