Andreas
2005-Jun-03 10:14 UTC
[Samba] AttributeType not found: "gidNumber" errormessage - SuSE 9.2
Hello!
I'm geting errormessage, when I start sldap on commandoline:
amd:/usr/lib/openldap # /usr/lib/openldap/slapd
/etc/openldap/schema/samba.schema: line 432: AttributeType not found:
"gidNumber"
I think, I must create a new group with a gid. But is the groupname
sambaGroupMapping?
my samba.schema-line 432:(MUST...):
##
## Group mapping info
##
objectclass ( 1.3.6.1.4.1.7165.2.2.4 NAME 'sambaGroupMapping' SUP top
AUXILIARY
DESC 'Samba Group Mapping'
MUST ( gidNumber $ sambaSID $ sambaGroupType )
MAY ( displayName $ description $ sambaSIDList ))
##
## Trust password for trust relationships (any kind)
my slapd.conf:
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/yast.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/samba.schema
include /etc/openldap/schema/rfc2307bis.schema
include /etc/openldap/schema/yast.schema
# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral ldap://root.openldap.org
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd/slapd.args
# Load dynamic backend modules:
# modulepath /usr/lib/openldap/modules
# moduleload back_ldap.la
# moduleload back_meta.la
# moduleload back_monitor.la
# moduleload back_perl.la
# Sample security restrictions
# Require integrity protection (prevent hijacking)
# Define global ACLs to disable default read access.
#access to dn.base=""
# by * read
#access to dn.base="cn=Subschema"
# by * read
#access to attr=userPassword,lmPassword,ntPassword,userPKCS12
# by self write
# by * auth
#access to attr=shadowLastChange
# by self write
# by * read
#access to *
# by * read
#######################################################################
# BDB database definitions
#######################################################################
database ldbm
suffix "dc=samba,dc=junits"
rootdn "cn=admin,dc=samba,dc=junits"
rootpw secret
directory /var/lib/ldap
cachesize 40000
dbcache 60000000
index cn,sn,uid,displayName pres,sub,eq
index uidNumber,gidNumber eq
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
index objectClass pres,eq
index rid,primaryGroupID eq
index default sub
access to dn="."dc=samba,dc=junits"
by self write
by * read
BTW, I have some problems to post in other gname NG's, for instance
gname.network.openldap.general.
The registration is gone, but the postings do not appeare.
Do somebody know more about this?
Best regards and many thanks
Andreas
Tony Earnshaw
2005-Jun-03 10:39 UTC
[Samba] AttributeType not found: "gidNumber" errormessage - SuSE 9.2
fre, 03.06.2005 kl. 12.12 skrev Andreas:> I'm geting errormessage, when I start sldap on commandoline: > > amd:/usr/lib/openldap # /usr/lib/openldap/slapd > /etc/openldap/schema/samba.schema: line 432: AttributeType not found: > "gidNumber" > I think, I must create a new group with a gid. But is the groupname > sambaGroupMapping?No. Forget the above ;) [...]> my slapd.conf: > # See slapd.conf(5) for details on configuration options. > # This file should NOT be world readable. > # > include /etc/openldap/schema/core.schema > include /etc/openldap/schema/cosine.schema > include /etc/openldap/schema/yast.schema > include /etc/openldap/schema/inetorgperson.schema > include /etc/openldap/schema/samba.schema > include /etc/openldap/schema/rfc2307bis.schema > include /etc/openldap/schema/yast.schemaSimply add: include /etc/openldap/schema/nis.schema to the above and restart slapd. nis.schema includes a lot of other stuff you have to have for your users' and machines' posixAccount information. --Tonni -- mail: tonye@billy.demon.nl http://www.billy.demon.nl