On 09/19/2011 03:01 PM, Vasil Mikhalenya wrote:

Hi all,

memberOf plugin changes case of it attrs. I have to specify about 4 variants in Cisco ASA ldap map to get auth work, like memberOf: CN=VPN-users,ou=People,dc=mydoamin memberOf: cn=VPN-users,ou=People,dc=mydoamin memberOf: cn=vpn-users,ou=people,dc=mydoamin memberOf: cn=VPN-users,ou=people,dc=mydoamin

Is there any workaround?

What exactly is the directory server returning if you do a search for the memberOf value? What is the actual DN of the group as returned by the directory server?

On 09/20/2011 05:30 PM, Ellsworth, Josh wrote:

We are working on consolidating our diverse LDAP systems onto 389DS, but we are having some trouble with openLDAP. The designers of a particular software package are using a custom openLDAP schema and we aren't sure how to get it into 389. When we simply copy the .ldif file into the /schema folder we get a bunch of the following errors:

[20/Sep/2011:18:48:25 -0700] - str2entry_dupcheck: entry has no dn [20/Sep/2011:18:48:25 -0700] dse - parsing dse entry [attributetype ( 2.999.1.1 NAME 'x-qq-uid' DESC 'User ID' SUP uid SINGLE-VALUE )]

Has anyone made this type of move before that can shed some light on where to go?

http://directory.fedoraproject.org/wiki/Howto:OpenLDAPMigration

Thanks!

Josh

-- 389 users mailing list 389-users@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/389-users