[Fedora-directory-users] How do I setup FDS so that Solaris clients will work with it?
Jerome Yanga
jyanga at esri.com
Fri Sep 26 22:28:10 UTC 2008
Thanks, Satish, but I used the same DUAConfigProfile specified in the
link below.
http://directory.fedoraproject.org/wiki/Howto:SolarisClient
Here is the exact contents of DUAConfigProfile I used from Gary Tay's
article which was referenced by the link
above(http://web.singnet.com.sg/~garyttt/Configuring%20Solaris%20Native%
20LDAP%20Client%20for%20Fedora%20Directory%20Server.htm).
"dn: cn=schema
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.0 NAME 'defaultServerList' DESC
'Default LDAP server host address used by a DUA' EQUALITY
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.1 NAME 'defaultSearchBase' DESC
'Default LDAP base DN used by a DUA' EQUALITY distinguishedNameMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.2 NAME 'preferredServerList'
DESC 'Preferred LDAP server host addresses to be used by a DUA' EQUALITY
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.3 NAME 'searchTimeLimit' DESC
'Maximum time in seconds a DUA should allow for a search to complete'
EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE
)
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.4 NAME 'bindTimeLimit' DESC
'Maximum time in seconds a DUA should allow for the bind operation to
complete' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.5 NAME 'followReferrals' DESC
'Tells DUA if it should follow referrals returned by a DSA search
result' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.6 NAME 'authenticationMethod'
DESC 'A keystring which identifies the type of authentication method
used to contact the DSA' EQUALITY caseIgnoreMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.7 NAME 'profileTTL' DESC 'Time
to live, in seconds, before a client DUA should re-read this
configuration profile' EQUALITY integerMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.14 NAME
'serviceSearchDescriptor' DESC 'LDAP search descriptor list used by a
DUA' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.9 NAME 'attributeMap' DESC
'Attribute mappings used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.10 NAME 'credentialLevel' DESC
'Identifies type of credentials a DUA should use when binding to the
LDAP server' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.11 NAME 'objectclassMap' DESC
'Objectclass mappings used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.12 NAME 'defaultSearchScope'
DESC 'Default search scope used by a DUA' EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.13 NAME
'serviceCredentialLevel' DESC 'Identifies type of credentials a DUA
should use when binding to the LDAP server for a specific service'
EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.15 NAME
'serviceAuthenticationMethod' DESC 'Authentication method used by a
service of the DUA' EQUALITY caseIgnoreMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 )
objectClasses: ( 1.3.6.1.4.1.11.1.3.1.2.4 NAME 'DUAConfigProfile' SUP
top STRUCTURAL DESC 'Abstraction of a base configuration for a DUA' MUST
( cn ) MAY ( defaultServerList $ preferredServerList $ defaultSearchBase
$ defaultSearchScope $ searchTimeLimit $ bindTimeLimit $ credentialLevel
$ authenticationMethod $ followReferrals $ serviceSearchDescriptor $
serviceCredentialLevel $ serviceAuthenticationMethod $ objectclassMap $
attributeMap $ profileTTL ) )"
When I import import it, I get the error below.
"cn=schema: Error adding object 'dn: cn=schema'. The error sent by the
server was 'null. missing required attribute "objectclass"
'. The object is: LDAPEntry: cn=schema; LDAPAttributeSet: LDAPAttribute
{type='objectclasses', values='( 1.3.6.1.4.1.11.1.3.1.2.4 NAME
'DUAConfigProfile' SUP top STRUCTURAL DESC 'Abstraction of a base
configuration for a DUA' MUST ( cn ) MAY ( defaultServerList $
preferredServerList $ defaultSearchBase $ defaultSearchScope $
searchTimeLimit $ bindTimeLimit $ credentialLevel $ authenticationMethod
$ followReferrals $ serviceSearchDescriptor $ serviceCredentialLevel $
serviceAuthenticationMethod $ objectclassMap $ attributeMap $ profileTTL
) )'} LDAPAttribute {type='attributetypes', values='(
1.3.6.1.4.1.11.1.3.1.1.0 NAME 'defaultServerList' DESC 'Default LDAP
server host address used by a DUA' EQUALITY caseIgnoreMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.1
NAME 'defaultSearchBase' DESC 'Default LDAP base DN used by a DUA'
EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.2 NAME 'preferredServerList'
DESC 'Preferred LDAP server host addresses to be used by a DUA' EQUALITY
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ),(
1.3.6.1.4.1.11.1.3.1.1.3 NAME 'searchTimeLimit' DESC 'Maximum time in
seconds a DUA should allow for a search to complete' EQUALITY
integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ),(
1.3.6.1.4.1.11.1.3.1.1.4 NAME 'bindTimeLimit' DESC 'Maximum time in
seconds a DUA should allow for the bind operation to complete' EQUALITY
integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ),(
1.3.6.1.4.1.11.1.3.1.1.5 NAME 'followReferrals' DESC 'Tells DUA if it
should follow referrals returned by a DSA search result' EQUALITY
caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ),(
1.3.6.1.4.1.11.1.3.1.1.6 NAME 'authenticationMethod' DESC 'A keystring
which identifies the type of authentication method used to contact the
DSA' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.7 NAME 'profileTTL' DESC 'Time
to live, in seconds, before a client DUA should re-read this
configuration profile' EQUALITY integerMatch SYNTAX
1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.14
NAME 'serviceSearchDescriptor' DESC 'LDAP search descriptor list used by
a DUA' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 ),(
1.3.6.1.4.1.11.1.3.1.1.9 NAME 'attributeMap' DESC 'Attribute mappings
used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 ),( 1.3.6.1.4.1.11.1.3.1.1.10 NAME
'credentialLevel' DESC 'Identifies type of credentials a DUA should use
when binding to the LDAP server' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.11
NAME 'objectclassMap' DESC 'Objectclass mappings used by a DUA' EQUALITY
caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ),(
1.3.6.1.4.1.11.1.3.1.1.12 NAME 'defaultSearchScope' DESC 'Default search
scope used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX
1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ),( 1.3.6.1.4.1.11.1.3.1.1.13
NAME 'serviceCredentialLevel' DESC 'Identifies type of credentials a DUA
should use when binding to the LDAP server for a specific service'
EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ),(
1.3.6.1.4.1.11.1.3.1.1.15 NAME 'serviceAuthenticationMethod' DESC
'Authentication method used by a service of the DUA' EQUALITY
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )'}."
What does the error mean? I apologize for the noob question.
Help.
Regards,
Jerome
________________________________________
From: Jerome Yanga
Sent: Thursday, September 25, 2008 9:50 AM
To: 'fedora-directory-users at redhat.com'
Subject: How do I setup FDS so that Solaris clients will work with it?
Help.
Can someone point me to a set of instructions that will help me setup
FDS 1.1.2 so that Solaris 10 clients will work with it?
I cannot setup the FDS properly using the instructions below as it seems
to be missing some information.
http://directory.fedoraproject.org/wiki/Howto:SolarisClient
Please advice.
Regards,
Jerome
More information about the Fedora-directory-users
mailing list