[389-users] Problem to create a root entry

jean-Noël Chardron Jean-Noel.Chardron at dr15.cnrs.fr
Tue Jun 9 15:20:34 UTC 2009 

Rich Megginson a écrit :
> jean-Noël Chardron wrote:
>> hello,
>>
>> Rich Megginson a écrit :
>>> jean-Noël Chardron wrote:
>>>> hello,
>>>>
>>>> On a fresh install of a 389 directory server  on fedora 10, I tried 
>>>> to create a root entry as described in the book Administration of 
>>>> Redhat Directory Server
>>>>
>>>> I tried some possibilities with directory console or command line, 
>>>> the behavior is hazardous :
>>>>
>>>> in command line i tried this below, but the branch dc=ad,... 
>>>> doesn't appear in the directory console
>>>>
>>>> [root at aragon db]# ldapmodify -a -x   -D "cn=directory manager" -w 
>>>> secret
>>>>
>>>> dn: cn=adData,cn=ldbm database,cn=plugins,cn=config
>>>> objectclass: extensibleObject
>>>> objectclass: nsBackendInstance
>>>> nsslapd-suffix: dc=ad,dc=dr15,dc=cnrs,dc=fr
>>>>
>>>> adding new entry "cn=adData,cn=ldbm database,cn=plugins,cn=config"
>>>>
>>>> dn: cn="dc=ad,dc=dr15,dc=cnrs,dc=fr",cn=mapping tree,cn=config
>>>> objectclass: top
>>>> objectclass: extensibleObject
>>>> objectclass: nsMappingTree
>>>> nsslapd-state: backend
>>>> nsslapd-parent-suffix: "dc=dr15,dc=cnrs,dc=fr"
>>>> nsslapd-backend: adData
>>>> cn: dc=ad,dc=dr15,dc=cnrs,dc=fr
>>>>
>>>> adding new entry "cn="dc=ad,dc=dr15,dc=cnrs,dc=fr",cn=mapping 
>>>> tree,cn=config"
>>>>
>>>> but the branch dc=ad,dr=15,dc=cnrs,dc=fr doesn't appear in the 
>>>> directory console
>>>>
>>>> If I ommit the parent (nsslapd-parent-suffix: "dc=dr15,dc=cnrs,dc=fr")
>>>> and i create a independant branch, the new root suffix 
>>>> (dc=ad,dc=dr15,dc=cnrs,dc=fr) appear in the directory console but 
>>>> in the tab "directory" I cannot
>>>> create the new root Object
>>>>
>>>> In fact my original problem is that I am never able to create a new 
>>>> root
>>>> object in the Directory under the root sufix dc=dr15,dc=cnrs,dc=fr 
>>>> even after creating the database. In the directory console the link 
>>>> 'New Root Object' is not active, then I cannot create the root 
>>>> object "dc=ad,dc=dr15,dc=cnrs,dc=fr"
>>>>
>>>> Can somebody tell me what is wrong or misconfigured
>>> This is one of the only operations the console admin cannot do.  You 
>>> must log into the console as cn=directory manager in order to create 
>>> a root entry.
>>
>> I am loging into the console as cn=directory manager !!
>> (I suppose the console is started by the application 
>> "fedora-idm-console"
>> I write in the Management Console : the User ID (cn=Directory 
>> Manager) the password (of course) and the Administration URL : 
>> (http://localhost:9830 )
>> Is there an another way to log ?
> Sure, you can use ldapmodify to add the entry.
>
I tried it according to chapter 2.2.2 in the book Redhat directory server
but i get an error :
 
# ldapmodify -a -x   -D "cn=directory manager" -w password
dn: dc=ad,dc=dr15,dc=cnrs,dc=fr objectClass: domain

adding new entry "dc=ad,dc=dr15,dc=cnrs,dc=fr objectClass: domain"
ldap_add: No such object (32)

then I tried :
dn: dc=ad,dc=dr15,dc=cnrs,dc=fr
objectClass: domain
objectclass: top      
dc: ad

adding new entry "dc=ad,dc=dr15,dc=cnrs,dc=fr"
ldap_add: Object class violation (65)
    additional info: unknown object class "top       " (remove the 
trailing spaces)
 
then :
dn: dc=ad,dc=dr15,dc=cnrs,dc=fr
objectClass: domain
dc: ad

adding new entry "dc=ad,dc=dr15,dc=cnrs,dc=fr"

éh great, it's working
thanks,

Ok now i'am going to do a replica of Active Directory, may be  others 
bugs ...



> It appears to be a bug that you cannot add the root entry for a 
> sub-suffix using the console.
>>
>>>
>>>>
>>>> Thanks
>>>>
>>>>
>>>> jnc
>>>>
>>>> -- 
>>>> 389 users mailing list
>>>> 389-users at redhat.com
>>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>
>>>
>>> ------------------------------------------------------------------------ 
>>>
>>>
>>> -- 
>>> 389 users mailing list
>>> 389-users at redhat.com
>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>   
>>
>>
>
>
> ------------------------------------------------------------------------
>
> --
> 389 users mailing list
> 389-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>   


-- 
Jean-Noel Chardron
Délégation CNRS Aquitaine et Limousin
Service du Traitement de l'Information
Avenue des Arts et métiers
BP 105
33402 TALENCE - FRANCE
tél : (33) 5.57.35.58.41
fax : (33) 5.57.35.58.01
MSN : jnc at dr15.cnrs.fr

More information about the 389-users mailing list