Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ldif]

49 questions
16
votes
1 answer

LDAP: How to add a person to an existing group?

Using command-line (Linux) or LDIF, I could find many examples of creating a new group and defining its members, but no examples of this: How to add a user to an existing group? Let's say the person also already exists. For instance adding user…
Nicolas Raoul
  • 1,314
  • 7
  • 22
  • 43
10
votes
5 answers

ldap_add: Constraint violation (19)

I'm having issues importing users with ldapadd and ldif files. The error I'm getting is: ldap_add: Constraint violation (19) additional info: structuralObjectClass: no user modification allowed The users imported are all part of…
Max
  • 3,373
  • 15
  • 51
  • 71
7
votes
3 answers

ldapadd/ldapmodify: clarifications needed about these commands

The ldapmodify man page states that: The default for ldapmodify is to modify existing entries Yet when I try to import an LDIF file with ldapmodify I get the below error: ldapmodify: modify operation type is missing at line X Q1: Why, which…
Max
  • 3,373
  • 15
  • 51
  • 71
6
votes
1 answer

what does the ldapadd error: "additional info: objectClass: value #3 invalid per syntax mean?

I have the ldif dn: olcOverlay=ppolicy,olcDatabase={1}hdb,cn=config objectClass: top objectClass: olcConfig objectClass: olcOverlayConfig objectClass: olcPPolicyConfig olcOverlay: ppolicy olcPPolicyDefault:…
Bruce Becker
  • 277
  • 1
  • 4
  • 18
4
votes
1 answer

OpenLDAP: Convert AD-Schema from *.ldif to *.schema

I'm running an OpenLDAP 2.4.44 with the module back_ldap as LDAP Proxy for MS-AD-Servers (see for details: openLDAP as proxy to Active Directory). Now I need to add the schemata from AD-Server to the OpenLDAP-Server and I have exported the schemata…
notes-jj
  • 238
  • 4
  • 9
4
votes
3 answers

LDIF: Modify attr if exists; Add if not exists

Is there a way to do one of the following in an LDIF file? Ignore error (attr not found) when trying to delete an attribute Or: If attribute exists, modify it If it doesn't exist, add it
user1844882
  • 91
  • 1
  • 6
4
votes
2 answers

How to add admin users in 389 LDAP, fedora directory server

I want to create couple of Admin users who have access to create/delete users on a particular group/Organization Unit. For example, User: uid=testadmin, ou=people, dc=my,dc=net Should have access to create new users/delete users under…
chandank
  • 847
  • 3
  • 14
  • 31
4
votes
3 answers

Restoring openldap configuration from ldif file?

I am trying to restore my OpenLDAP server from an ldif file I made before it went horribly wrong. All of the websites I found talk about using slapadd but when I run slapadd -v -l ~ns01/openldap_config.ldif it returns the error Could not stat config…
ianc1215
  • 1,965
  • 7
  • 34
  • 55
3
votes
3 answers

openLDAP ldap_modify: Server is unwilling to perform (53) when trying to delete custom schema

I have created this custom and very basic schema: objectclass ( 2.25.2.2.1 NAME 'myObjectClass' DESC 'myObjectClass objectclass' STRUCTURAL MUST ( cn ) ) I have added it without problem with this myObjectClass.ldif file: dn:…
Marco Antonio Suárez Peña
  • 33
  • 1
  • 1
  • 5
3
votes
1 answer

OpenLDAP advanced ACL configuration

I have a multiple DITs in my OpenLDAP server. I made user cn=config the root so that cn=config has root access to all DITs (each DIT). In addition, there is a per-DIT administrator IDed as cn=admin,$suffix [for example cn=admin,dc=example,dc=com or…
Moshe Shmukler
  • 207
  • 1
  • 8
3
votes
0 answers

SecErr: DSID-031A1190, 4003 (INSUFF_ACCESS_RIGHTS), data 0

I am trying to change the password of the currently logged in user via ldifde using this command: ldifde -i -f pwd.ldif -t 636 My AD server is running in SSL mode with a self signed certificate. The pwd.ldif contains the following: dn:…
mirage
  • 221
  • 1
  • 3
  • 11
3
votes
2 answers

How do I solve LDIFDE errors on "last token starts with 'C'" and "change-modify entry is missing the terminator '-'" when..?

How do I solve LDIFDE errors on "last token starts with 'C'" and "change-modify entry is missing the terminator '-'" when trying to pair existing users to exiting security groups (domain migration)? I execute…
BlueToast
  • 67
  • 1
  • 1
  • 9
3
votes
0 answers

How do I add an entryUUID field to the FreeIPA compat schema?

I am trying to add an entryUUID field to groups in the FreeIPA compat schema, but I am struggling to create the required attributeType. My LDIF for creating it is: dn: cn=schema changetype: modify add: attributeTypes attributeTypes: ( entryUUID-oid …
Mutantoe
  • 91
  • 6
2
votes
0 answers

AccessControlEntry (ACL/ACE) in Active Directory with LDIF

Can I add AccessControlEntry (ACL/ACE) in Active Directory with LDIF Files and ldapadd? With OpenLDAP / Oracle Directory it seems to be possible. I've tried: ## delegate Control / add ACI dn:…
schmichri
  • 377
  • 2
  • 9
2
votes
1 answer

How to add ACL on OpenLDAP

I want to add an ACL for a sub organization on my OpenLDAP. This is their ACL documentation: https://www.openldap.org/doc/admin24/access-control.html I am using ldapmodify to update the ldap db on a running OpenLDAP instance. This is the ldif file I…
Dimitri Kopriwa
  • 177
  • 1
  • 11
1
2 3 4