[plug] LDAP migration help

Phillip Bennett phillip at mve.com
Wed Jun 13 21:27:27 WST 2007 

Hi everyone,

I am trying to migrate our NIS services (users, autofs etc) to an LDAP 
server. I have found the Migration Tools from PADL (www.padl.com) and I am 
having a few weird problems.

When running the "migrate_all_nis_online.sh" script, I recieve the following 
error:

adding new entry "uid=clare,ou=People,dc=mve,dc=com"
ldap_add: Invalid syntax (21)
        additional info: objectClass: value #6 invalid per syntax

The data in question from the created ldif file is as follows:

dn: uid=clare,ou=People,dc=mve,dc=com
uid: clare
cn: Clare Bond
givenName: Clare
sn: Bond
mail: clare at mve.com
mailRoutingAddress: clare at islay.mve.com
mailHost: islay.mve.com
objectClass: inetLocalMailRecipient
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
objectClass: kerberosSecurityObject
userPassword: {crypt}<snip!>
krbName: clare at MVE.COM
loginShell: /bin/tcsh
uidNumber: 2049
gidNumber: 20
homeDirectory: /homes/clare
gecos: Clare Bond

I'm not sure exactly which value is giving the error, but after removing all 
the mail ones, it looks like it's one of the objectClass values.  There is 
no white space, and the values all look right to me.

All the howtos I have read so far indicate that the "USE_EXTENDED_SCHEMA" 
VALUE SHOULD BE SET TO 1.  However, if I set it to 0, the LDIF file gives 
the following data:

dn: uid=clare,ou=People,dc=mve,dc=com
uid: clare
cn: Clare Bond
objectClass: account
objectClass: posixAccount
objectClass: top
userPassword: {crypt}<snip!>
loginShell: /bin/tcsh
uidNumber: 2049
gidNumber: 20
homeDirectory: /homes/clare
gecos: Clare Bond

Then, the resulting LDIF file works properly (after a bout of deleting 
duplicate service informatoin) and I have an LDAP database.  So the question 
becomes, "Do I need the extended schema?"

The relevant includes from the slapd.conf file are: core.schema, 
cosine.schema, inetorgperson.schema, nis.schemfa, samba.schema, 
autofs.schema and misc.schema.  I am hoping to be able to use the LDAP 
server for samba authentication later on (If it ever works!) and 
authenticate the windows clients to the samba server., thus giving linux and 
windows a single user database for everything.

If anyone can help at all, I'd really appreciate it.

Thanks in advance,
Phil.

More information about the plug mailing list