Quanah Gibson-Mount wrote: > --On Thursday, July 11, 2019 5:29 PM -0300 Igor Sousa <[email protected]> > wrote: > >> I've tested your suggestion and delete operation has worked fine, but >> I've still had the same problem described previously when I've tried add >> new olcTLSCertificateFile or new olcTLSCertificateKeyFile or new >> olcTLSCACertificateFile. I don't understand the reason for that. > >>> You're likely hitting ITS#8286 with the replace operations. Another > idea may be to change replace to a delete+add in the same operation sequence. > > > <https://www.openldap.org/its/index.cgi/?findid=8286> > > The details in the ITS aren't as flushed out as they probably should be, but > if a configuration element is missing an EQUALITY matching rule, then you > generally > cannot use a replace OP on them.
That's not correct. A replace op always works. It is only [Delete/Add] value that requires an equality rule. -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/
