[Ltb-users] Packages for OpenLDAP 2.4.43

Lionel Caignec caignec at cines.fr
Thu Jan 14 18:47:11 CET 2016


Hi,

just a little update Clement Oudot confirm, the standard update procedure work if you use old config style (slapd.conf).


--
Lionel

----- Mail original -----
De: "Clément OUDOT" <clem.oudot at gmail.com>
À: "ltb-users" <ltb-users at lists.ltb-project.org>
Envoyé: Lundi 7 Décembre 2015 14:17:38
Objet: [Ltb-users] Packages for OpenLDAP 2.4.43

Hi,

packages (Debian and RPM) for OpenLDAP 2.4.43 are now avaiblable on LTB:
http://ltb-project.org/wiki/download#openldap

Notice that the upgrade can fail if you have ppolicy overlay activated in
your configuration. Indeed, a new attribute appears in the ppolicy shema,
so you can face this error message:

56658127 User Schema load failed for attribute "pwdMaxRecordedFailure".
Error code 17: attribute type undefined
56658127 config error processing
olcOverlay={0}ppolicy,olcDatabase={1}mdb,cn=config: User Schema load failed
for attribute "pwdMaxRecordedFailure". Error code 17: attribute type
undefined
56658127 slapd stopped.
56658127 connections_destroy: nothing to destroy.

The best is to to a service slapd backupconfig *before* the upgrade. Stop
OpenLDAP and do the upgrade.

Then edit the backup configuration and replace the ppolicy shcema by the
new one (located in /usr/local/openldap/etc/openldap/schema/ppolicy.ldif).
You can now restore it: service slapd restoreconfig.


If you forgot to do this before upgrade, the only way is to edit the LDIF
files directly in slapd.d/, but you will get this warning:
566582ef ldif_read_file: checksum error on
"****/slapd.d/cn=config/cn=schema/cn={3}ppolicy.ldif"

To bypass it, do a service slapd backupconfig and service slapd
restoreconfig


Good luck!


Clément.

_______________________________________________
ltb-users mailing list
ltb-users at lists.ltb-project.org
http://lists.ltb-project.org/listinfo/ltb-users


More information about the ltb-users mailing list