Monday, December 13, 2010

Adding Active Directory properties to ApacheDS

One of the things I have to do during my day is replicate Active Directory in ApacheDS. The most simple properties are member and memberOf. The following uses an LDIF file to add these properties. I've reused the OID for memberOf but I think the adUser OID is from a tutorial or something so it may clash.


dn: m-oid=1.2.840.113556.1.5.8, ou=objectClasses, cn=other, ou=schema
objectclass: metaObjectClass
objectclass: metaTop
objectclass: top
m-oid: 1.2.840.113556.1.5.8
m-name: group
m-must: cn
m-may: member

dn: m-oid=1.2.840.113556.1.2.102,ou=attributeTypes,cn=other,ou=schema
m-usage: USER_APPLICATIONS
m-equality: distinguishedNameMatch
objectClass: metaAttributeType
objectClass: metaTop
objectClass: top
m-name: memberOf
m-oid: 1.2.840.113556.1.2.102
m-obsolete: FALSE
m-noUserModification: FALSE
m-syntax: 1.3.6.1.4.1.1466.115.121.1.12

dn: m-oid=1.3.6.1.4.1.18060.0.4.3.3.1, ou=objectClasses, cn=other, ou=schema
objectclass: metaObjectClass
objectclass: metaTop
objectclass: top
m-oid: 1.3.6.1.4.1.18060.0.4.3.3.1
m-name: adUser
m-supObjectClass: inetOrgPerson
m-must: cn
m-may: memberOf
Labels:

4 comments:

Poohpeer said...

Hi,

I need help. I'm trying to add member of attribute to my ApacheDS, but your example above doesn't work.
When I import, it fails on last section with error:
#!RESULT ERROR
#!CONNECTION ldap://10.20.1.88:10389
#!DATE 2011-06-28T19:19:39.474
#!ERROR Record is invalid

Can you help with that, please?

2:30 am
Jonathan Disher said...

Did you have to do anything besides drop the schema modifications in? I added this, and when I do an ldapsearch I still don't see the memberOf: return.

3:34 am
Andrew said...

Thanks for the comments. The only thing I can remember from this is loading the LDIF file in as per the instructions here:
http://directory.apache.org/apacheds/1.5/apacheds-bootstrapping.html

11:47 am
Anonymous said...

I have added your entries to my LDIF file. When starting ApacheDS I get the following warning:

Cannot normalize the value :Encountered name based id of memberOf which was not found in the OID registry

Do you recall having issues like this yourself?

Thanks,
Tim

1:31 pm

Post a Comment

Subscribe to: Post Comments (Atom)