directory-fortress mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Shawn McKinney <smckin...@apache.org>
Subject Re: Fortress and Openldap
Date Mon, 01 Aug 2016 20:47:01 GMT

> On Aug 1, 2016, at 3:01 PM, Ted Haynes <edwardahaynes@yahoo.com.INVALID> wrote:
> 
> I am trying to configure fortress to use openldap that comes with centos 6 and not the
Symas OpenLDAP. When I am trying to build the directory information tree using the these maven
commands, I get lots of errors around this using multiple namingContexts. 
> mvn install -Dload.file=./ldap/setup/refreshLDAPData.xmlmvn install -Dload.file=./ldap/setup/DelegatedAdminManagerLoad.xml
> From what I can tell, OpenLDAP only wants a single naming context. I can't find the configuration
files to change to use my namingContext (dc=company, dc=com) instead of the ou=schema, ou=config,
ou=system. How do I change these?
>  [startAnt] [FortressAdmin] 2016-08-01 15:39:19,832 (INFO ) create dn [cn=DEFAULT,ou=Config,dc=staples,dc=com]
[startAnt] [FortressAdmin] 2016-08-01 15:39:19,838 (ERROR) create config dn [cn=DEFAULT,ou=Config,dc=company,dc=com]
caught LDAPException=objectClass: value #1 invalid per syntax [startAnt] [FortressAdmin] org.apache.directory.api.ldap.model.exception.LdapInvalidAttributeValueException:
objectClass: value #1 invalid per syntax
> 
>  [startAnt] [FortressAdmin] 2016-08-01 15:39:19,839 (INFO ) addConfig realm name [TOMCAT]
[startAnt] [FortressAdmin] 2016-08-01 15:39:19,840 (INFO ) create dn [cn=TOMCAT,ou=Config,dc=staples,dc=com]
[startAnt] [FortressAdmin] 2016-08-01 15:39:19,847 (ERROR) create config dn [cn=TOMCAT,ou=Config,dc=company,dc=com]
caught LDAPException=objectClass: value #1 invalid per syntax [startAnt] [FortressAdmin] org.apache.directory.api.ldap.model.exception.LdapInvalidAttributeValueException:
objectClass: value #1 invalid per syntax

Hi Ted, looks as though you haven’t applied the fortress schema per the https://github.com/apache/directory-fortress-core/blob/master/README.md

SECTION 7. Instructions for configuring OpenLDAP

2. Copy fortress schema to openldap schema folder:

cp FORTRESS_HOME/ldap/schema/fortress.schema OPENLDAP_HOME/etc/openldap/schema

3. Edit slapd.conf:

vi OPENLDAP_HOME/etc/openldap/slapd.conf

4. Enable Fortress schema.

Add to the top of the file:

include OPENLDAP_HOME/etc/openldap/schema/fortress.schema

***

After that you can change the suffix from dc=example,dc=cpm by updating these settings in
the slapd.properties file and re-running mvn install (before rerunning load scripts) in order
to push the new params down into the fortress.properties and refreshldap.xml script.

########################################################################
# 1. OVERRIDE WITH OPENLDAP SPECIFIC COORDINATES:
####################################################################################
ldap.server.type=openldap
ldap.host=localhost
ldap.port=389
suffix.name=example
suffix.dc=com
suffix=dc=${suffix.name},dc=${suffix.dc}
root.dn=cn=Manager,${suffix}
# Used to load OpenLDAP admin root password in slapd.conf and was encrypted using 'slappasswd'
command:
root.pw={SSHA}pSOV2TpCxj2NMACijkcMko4fGrFopctU
cfg.root.pw=secret



Mime
View raw message