thr3ads.net - Fedora directory users - RE: [Fedora-directory-users] How do I setup FDS so that Solaris clients will work with it? [Sep 2008]

If this information is useful, please help other people find it:
Share via:
Jerome Yanga
2008-Sep-26 22:28 UTC
RE: [Fedora-directory-users] How do I setup FDS so that Solaris clients will work with it?

Thanks, Satish, but I used the same DUAConfigProfile specified in the
link below.

http://directory.fedoraproject.org/wiki/Howto:SolarisClient

Here is the exact contents of DUAConfigProfile I used from Gary Tay''s
article which was referenced by the link
above(http://web.singnet.com.sg/~garyttt/Configuring%20Solaris%20Native%
20LDAP%20Client%20for%20Fedora%20Directory%20Server.htm).


"dn: cn=schema
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.0 NAME
''defaultServerList'' DESC
''Default LDAP server host address used by a DUA'' EQUALITY
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.1 NAME
''defaultSearchBase'' DESC
''Default LDAP base DN used by a DUA'' EQUALITY
distinguishedNameMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.2 NAME
''preferredServerList''
DESC ''Preferred LDAP server host addresses to be used by a
DUA'' EQUALITY
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.3 NAME
''searchTimeLimit'' DESC
''Maximum time in seconds a DUA should allow for a search to
complete''
EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE
)
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.4 NAME
''bindTimeLimit'' DESC
''Maximum time in seconds a DUA should allow for the bind operation to
complete'' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.5 NAME
''followReferrals'' DESC
''Tells DUA if it should follow referrals returned by a DSA search
result'' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.6 NAME
''authenticationMethod''
DESC ''A keystring which identifies the type of authentication method
used to contact the DSA'' EQUALITY caseIgnoreMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.7 NAME ''profileTTL''
DESC ''Time
to live, in seconds, before a client DUA should re-read this
configuration profile'' EQUALITY integerMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.14 NAME
''serviceSearchDescriptor'' DESC ''LDAP search
descriptor list used by a
DUA'' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.9 NAME ''attributeMap''
DESC
''Attribute mappings used by a DUA'' EQUALITY caseIgnoreIA5Match
SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.10 NAME
''credentialLevel'' DESC
''Identifies type of credentials a DUA should use when binding to the
LDAP server'' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.11 NAME
''objectclassMap'' DESC
''Objectclass mappings used by a DUA'' EQUALITY
caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.12 NAME
''defaultSearchScope''
DESC ''Default search scope used by a DUA'' EQUALITY
caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.13 NAME
''serviceCredentialLevel'' DESC ''Identifies type of
credentials a DUA
should use when binding to the LDAP server for a specific service''
EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.15 NAME
''serviceAuthenticationMethod'' DESC ''Authentication
method used by a
service of the DUA'' EQUALITY caseIgnoreMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 )
objectClasses: ( 1.3.6.1.4.1.11.1.3.1.2.4 NAME
''DUAConfigProfile'' SUP
top STRUCTURAL DESC ''Abstraction of a base configuration for a
DUA'' MUST
( cn ) MAY ( defaultServerList $ preferredServerList $ defaultSearchBase
$ defaultSearchScope $ searchTimeLimit $ bindTimeLimit $ credentialLevel
$ authenticationMethod $ followReferrals $ serviceSearchDescriptor $
serviceCredentialLevel $ serviceAuthenticationMethod $ objectclassMap $
attributeMap $ profileTTL ) )"

When I import import it, I get the error below.

"cn=schema: Error adding object ''dn: cn=schema''.  The
error sent by the
server was ''null. missing required attribute "objectclass"
''.  The object is: LDAPEntry: cn=schema; LDAPAttributeSet:
LDAPAttribute
{type=''objectclasses'', values=''(
1.3.6.1.4.1.11.1.3.1.2.4 NAME
''DUAConfigProfile'' SUP top STRUCTURAL DESC
''Abstraction of a base
configuration for a DUA'' MUST ( cn ) MAY ( defaultServerList $
preferredServerList $ defaultSearchBase $ defaultSearchScope $
searchTimeLimit $ bindTimeLimit $ credentialLevel $ authenticationMethod
$ followReferrals $ serviceSearchDescriptor $ serviceCredentialLevel $
serviceAuthenticationMethod $ objectclassMap $ attributeMap $ profileTTL
) )''} LDAPAttribute {type=''attributetypes'',
values=''(
1.3.6.1.4.1.11.1.3.1.1.0 NAME ''defaultServerList'' DESC
''Default LDAP
server host address used by a DUA'' EQUALITY caseIgnoreMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.1
NAME ''defaultSearchBase'' DESC ''Default LDAP base DN
used by a DUA''
EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.2 NAME
''preferredServerList''
DESC ''Preferred LDAP server host addresses to be used by a
DUA'' EQUALITY
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ),(
1.3.6.1.4.1.11.1.3.1.1.3 NAME ''searchTimeLimit'' DESC
''Maximum time in
seconds a DUA should allow for a search to complete'' EQUALITY
integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ),(
1.3.6.1.4.1.11.1.3.1.1.4 NAME ''bindTimeLimit'' DESC
''Maximum time in
seconds a DUA should allow for the bind operation to complete'' EQUALITY
integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ),(
1.3.6.1.4.1.11.1.3.1.1.5 NAME ''followReferrals'' DESC
''Tells DUA if it
should follow referrals returned by a DSA search result'' EQUALITY
caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ),(
1.3.6.1.4.1.11.1.3.1.1.6 NAME ''authenticationMethod'' DESC
''A keystring
which identifies the type of authentication method used to contact the
DSA'' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.7 NAME ''profileTTL''
DESC ''Time
to live, in seconds, before a client DUA should re-read this
configuration profile'' EQUALITY integerMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.14
NAME ''serviceSearchDescriptor'' DESC ''LDAP search
descriptor list used by
a DUA'' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 ),(
1.3.6.1.4.1.11.1.3.1.1.9 NAME ''attributeMap'' DESC
''Attribute mappings
used by a DUA'' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 ),( 1.3.6.1.4.1.11.1.3.1.1.10 NAME
''credentialLevel'' DESC ''Identifies type of
credentials a DUA should use
when binding to the LDAP server'' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.11
NAME ''objectclassMap'' DESC ''Objectclass mappings used
by a DUA'' EQUALITY
caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ),(
1.3.6.1.4.1.11.1.3.1.1.12 NAME ''defaultSearchScope'' DESC
''Default search
scope used by a DUA'' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.13
NAME ''serviceCredentialLevel'' DESC ''Identifies type
of credentials a DUA
should use when binding to the LDAP server for a specific service''
EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ),(
1.3.6.1.4.1.11.1.3.1.1.15 NAME ''serviceAuthenticationMethod''
DESC
''Authentication method used by a service of the DUA'' EQUALITY
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )''}."

What does the error mean?  I apologize for the noob question.

Help.

Regards,
Jerome



________________________________________
From: Jerome Yanga 
Sent: Thursday, September 25, 2008 9:50 AM
To: ''fedora-directory-users@redhat.com''
Subject: How do I setup FDS so that Solaris clients will work with it?

Help.

Can someone point me to a set of instructions that will help me setup
FDS 1.1.2 so that Solaris 10 clients will work with it?

I cannot setup the FDS properly using the instructions below as it seems
to be missing some information.

http://directory.fedoraproject.org/wiki/Howto:SolarisClient


Please advice.

Regards,
Jerome
Fedora directory users - Sep 2008 - RE: How do I setup FDS so that Solaris clients will work with it?

RE: [Fedora-directory-users] How do I setup FDS so that Solaris clients will work with it?
