AW: AW: [Freeipa-devel] [PATCH] ignore empty values in multi-valued UI attribute

Andreas Mischinski mischins at imi.uni-luebeck.de
Tue Jun 3 20:12:28 UTC 2008 

Hey, this is the result. 

/usr/lib/mozldap/ldappasswd -D "cn=Directory Manager" -w password1 -P
/etc/dirsrv/slapd-MISCHINS-WORLD//cert8.db -ZZZ -s password2
uid=admin,cn=sysaccounts,cn=etc,dc=mischins,dc=world
ldap_start_tls_s failed: (Can't connect to the LDAP server)

I `ve installed fedora core 9 (fresh install) and then selected the
ipaserver package over the package manager.
>From the commandline I started ipa-server-install and received the only
error with setting the admin password.

MISCHINS.WORLD is a test domain in our environment. We want to migrate from
pure OpenLdap to something like fedora directory server in combination with
Active Director, since many applications are designed for Active Directory.

It seems for me, that he had the same problem ? 

Maybe  I should downgrade my fedora core installation, but that would not be
my first choice.
If I can provide you with more info, commands, let me know.

Andreas  

-----Ursprüngliche Nachricht-----
Von: Rob Crittenden [mailto:rcritten at redhat.com] 
Gesendet: Dienstag, 3. Juni 2008 21:56
An: Andreas Mischinski
Cc: 'freeipa-devel'
Betreff: Re: AW: [Freeipa-devel] [PATCH] ignore empty values in multi-valued
UI attribute

Andreas Mischinski wrote:
> I`m a noob with this ipaserver. Tell me what`s wrong with my installation
? 
> 
> Should I apply your patch and reinstall the ipaserver ? 
> 
> Thanks for help so far.
> 
> -----Ursprüngliche Nachricht-----
> Von: freeipa-devel-bounces at redhat.com
> [mailto:freeipa-devel-bounces at redhat.com] Im Auftrag von Rob Crittenden
> Gesendet: Dienstag, 3. Juni 2008 20:59
> An: freeipa-devel
> Betreff: [Freeipa-devel] [PATCH] ignore empty values in multi-valued UI
> attribute
> 
> When converting from a multi-valued UI attribute back to a list drop any
> blank values. This will avoid errors in the UniqueList() validator.
> 
> rob
> 

No, this patch too is unrelated to your problem. We post all patches for 
peer review here in a post starting with PATCH so they are easy to find.

Can you try this command (basically putting quotes around cn=)

/usr/lib/mozldap/ldappasswd -D "cn=Directory Manager" -w password1
-P /etc/dirsrv/slapd-MISCHINS-WORLD/cert8.db -ZZZ -s password1
uid=admin,cn=sysaccounts,cn=etc,dc=mischins,dc=world

There was one other report of this problem, 
https://bugzilla.redhat.com/show_bug.cgi?id=442802

I was never able to get confirmation on what he did to fix it though.

rob

More information about the Freeipa-devel mailing list