Hi, all. Is there a faq entry/how-to on how to serve automount maps with FDS? It seems that I need the automount objectClass but where is the schema supporting that? I found this one: http://people.redhat.com/nalin/schema/autofs.schema is that what folks normally use? It seems that cosine.schema is a requirement.. should I steal that from an openldap rpm? Can the 10rfc2307 schema be used somehow? It comes with FDS which is nice but it''s got all that nis stuff in there, not sure how relevant that would be with linux clients... Thanks for your help. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Susan wrote:> Hi, all. Is there a faq entry/how-to on how to serve automount maps with FDS? > > It seems that I need the automount objectClass but where is the schema supporting that? I found > this one: > > http://people.redhat.com/nalin/schema/autofs.schemaThat schema can be used stand-alone in FDS. Just convert it with my script, and restart the FDS service: # ol-schema-migrate.pl autofs.schema > 80autofs.ldif # mv 80autofs.ldif /opt/fedora-ds/slapd-`hostname`/config/schema # /opt/fedora-ds/slapd-`hostname`/restart-slapd -- mike
--- Mike Jackson <mj@sci.fi> wrote:> > http://people.redhat.com/nalin/schema/autofs.schema > > > That schema can be used stand-alone in FDS. Just convert it with my > script, and restart the FDS service: > > # ol-schema-migrate.pl autofs.schema > 80autofs.ldif > # mv 80autofs.ldif /opt/fedora-ds/slapd-`hostname`/config/schema > # /opt/fedora-ds/slapd-`hostname`/restart-slapd >Thanks. However, I now get this: [root@cnyldap01 schema]# /opt/fedora-ds/slapd-cnyldap01/restart-slapd [06/Feb/2006:13:34:09 -0500] dse - The entry cn=schema in file /opt/fedora-ds/slapd-cnyldap01/config/schema/80autofs.ldif is invalid, error code 20 (Type or value exists) - object class automount: The OID "1.3.6.1.1.1.1.9" is also used by the attribute type "shadowInactive" Have you seen this error before? __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Susan wrote:>--- Mike Jackson <mj@sci.fi> wrote: > > >>>http://people.redhat.com/nalin/schema/autofs.schema >>> >>> >>That schema can be used stand-alone in FDS. Just convert it with my >>script, and restart the FDS service: >> >># ol-schema-migrate.pl autofs.schema > 80autofs.ldif >># mv 80autofs.ldif /opt/fedora-ds/slapd-`hostname`/config/schema >># /opt/fedora-ds/slapd-`hostname`/restart-slapd >> >> >> > >Thanks. > >However, I now get this: >[root@cnyldap01 schema]# /opt/fedora-ds/slapd-cnyldap01/restart-slapd >[06/Feb/2006:13:34:09 -0500] dse - The entry cn=schema in file >/opt/fedora-ds/slapd-cnyldap01/config/schema/80autofs.ldif is invalid, error code 20 (Type or >value exists) - object class automount: The OID "1.3.6.1.1.1.1.9" is also used by the attribute >type "shadowInactive" > >Have you seen this error before? > > >It is conflicting with the RFC2307 schema. I don''t know how this stuff perpetuates (and this nonsense is everywhere, I have seen at least two phony OIDs for this attribute alone) - but the automount attribute in the linked schema has an OID stolen from RFC2307 and assigned by IANA to shadowInactive. RFC2307bis is the first document to mention automount, and it designates automount schema thus: Attributetypes: ( 1.3.6.1.1.1.1.31 NAME ''automountMapName'' DESC ''automount Map Name'' EQUALITY caseExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) ( 1.3.6.1.1.1.1.32 NAME ''automountKey'' DESC ''Automount Key value'' EQUALITY caseExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) ( 1.3.6.1.1.1.1.33 NAME ''automountInformation'' DESC ''Automount information'' EQUALITY caseExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) Objectclasses: ( 1.3.6.1.1.1.2.16 NAME ''automountMap'' SUP top STRUCTURAL MUST ( automountMapName ) MAY description ) ( 1.3.6.1.1.1.2.17 NAME ''automount'' SUP top STRUCTURAL DESC ''Automount information'' MUST ( automountKey $ automountInformation ) MAY description ) -- Pete
--- Pete Rowley <prowley@redhat.com> wrote:> Susan wrote: > >However, I now get this: > >[root@cnyldap01 schema]# /opt/fedora-ds/slapd-cnyldap01/restart-slapd > >[06/Feb/2006:13:34:09 -0500] dse - The entry cn=schema in file > >/opt/fedora-ds/slapd-cnyldap01/config/schema/80autofs.ldif is invalid, error code 20 (Type or > >value exists) - object class automount: The OID "1.3.6.1.1.1.1.9" is also used by the attribute > >type "shadowInactive" > > > >Have you seen this error before? > > > > > > > It is conflicting with the RFC2307 schema. I don''t know how this stuff > perpetuates (and this nonsense is everywhere, I have seen at least two > phony OIDs for this attribute alone) - but the automount attribute in > the linked schema has an OID stolen from RFC2307 and assigned by IANA to > shadowInactive.Got it. The problem is that the schema above is provided by what looks like a Redhat employee which lends some credence to it.> RFC2307bis is the first document to mention automount, and it designates > automount schema thus:so, should I just use the RFC2307bis schema then? I mean, looks like this RFC has expired and there doesn''t seem to be a replacement for the autofs attributes and object classes. Uhm.. What''s a gal to do then??? __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
> > Uhm.. What''s a gal to do then???AFAIK, there isn''t yet a perfect answer, mostly because automount schema is not standard yet (though rfc2307bis is/was a proposed standard). If you are only supporting Linux clients, you probably don''t need additional autofs schema. Linux autofs (at least in RedHat/Fedora) will look for objects with objectclass ''nisObject'' when looking up automount info. This method dates back to the original RFC2307 (non-bis version), and might make your life easier as long as you don''t expect to add Solaris clients to your environment. If you are supporting Solaris clients, you WILL need the 2307bis style automount schema, although Sun''s version is NOT identical to the one at http://people.redhat.com/nalin/schema/autofs.schema. You can find the Solaris automount schema embedded in their ''idsconfig'' script: http://cvs.opensolaris.org/source/xref/on/usr/src/cmd/ldap/ns_ldap/idsconfig.sh Some more discussions about storing automount info in a directory can be found at http://www.ldapguru.org, e.g.: http://www.ldapguru.org/modules/newbb/viewtopic.php?viewmode=flat&topic_id=2029&forum=6 Hopefully this will be a lot more straightforward in a few years, but for now the standard is a work-in-progress. -- George Susan wrote:> --- Pete Rowley <prowley@redhat.com> wrote: > > >> Susan wrote: >> >>> However, I now get this: >>> [root@cnyldap01 schema]# /opt/fedora-ds/slapd-cnyldap01/restart-slapd >>> [06/Feb/2006:13:34:09 -0500] dse - The entry cn=schema in file >>> /opt/fedora-ds/slapd-cnyldap01/config/schema/80autofs.ldif is invalid, error code 20 (Type or >>> value exists) - object class automount: The OID "1.3.6.1.1.1.1.9" is also used by the attribute >>> type "shadowInactive" >>> >>> Have you seen this error before? >>> >>> >>> >>> >> It is conflicting with the RFC2307 schema. I don''t know how this stuff >> perpetuates (and this nonsense is everywhere, I have seen at least two >> phony OIDs for this attribute alone) - but the automount attribute in >> the linked schema has an OID stolen from RFC2307 and assigned by IANA to >> shadowInactive. >> > > Got it. The problem is that the schema above is provided by what looks like a Redhat employee > which lends some credence to it. > > > >> RFC2307bis is the first document to mention automount, and it designates >> automount schema thus: >> > > so, should I just use the RFC2307bis schema then? I mean, looks like this RFC has expired and > there doesn''t seem to be a replacement for the autofs attributes and object classes. > > Uhm.. What''s a gal to do then??? > > __________________________________________________ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam protection around > http://mail.yahoo.com > > -- > Fedora-directory-users mailing list > Fedora-directory-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users > >
--- George Holbert <gholbert@broadcom.com> wrote:> > > > Uhm.. What''s a gal to do then??? > AFAIK, there isn''t yet a perfect answer, mostly because automount schema > is not standard yet (though rfc2307bis is/was a proposed standard). > [..] > If you are supporting Solaris clients, you WILL need the 2307bis style > automount schema, although Sun''s version is NOT identical to the one at > http://people.redhat.com/nalin/schema/autofs.schema.Yeah, I will be supporting solaris 10 in the future. I got the following schema from the HP''s site: http://docs.hp.com/en/J4269-90051/ch02s09.html dn: cn=schema objectClasses: ( 1.3.6.1.1.1.2.16 NAME ''automountMap'' DESC ''Automount Map information'' SUP top STRUCTURAL MUST automountMapName MAY description X-ORIGIN ''user defined'' ) objectClasses: ( 1.3.6.1.1.1.2.17 NAME ''automount'' DESC ''Automount information'' SUP top STRUCTURAL MUST ( automountKey $ automountInformation ) MAY description X-ORIGIN ''user defined'' ) attributeTypes: ( 1.3.6.1.1.1.1.31 NAME ''automountMapName'' DESC ''automount Map Name'' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN ''user defined'' ) attributeTypes: ( 1.3.6.1.1.1.1.32 NAME ''automountKey'' DESC ''Automount Key value'' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN ''user defined'' ) attributeTypes: ( 1.3.6.1.1.1.1.33 NAME ''automountInformation'' DESC ''Automount information'' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN ''user defined'' ) Perhaps it can be added to the wiki? Seems like it''s much easier to copy & paste that, rather than trying to rip out the schema from the idsconfig... Thank you, George. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Susan wrote:>which lends some credence to it. > > > > Got it. The problem is that the schema above is provided by what looks > like a Redhat employeeYes. I have contacted the person who published that schema and it will be changed. However, due to the uncertainty surrounding RFC2307bis (some of its attribute OIDs are not actually assigned by the IANA yet) that schema will likely use Red Hat private OIDs until the situation becomes clearer. -- Pete