Re: password not expire 389

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Sun, 2017-02-26 at 17:53 +0000, tuan88@xxxxxxxxx wrote:
> I observer this one after the update of 389*
> 
> Starting dirsrv:
>     NNIT...[26/Feb/2017:18:26:09 +0100] dse_read_one_file - The entry cn=schema in file /etc/dirsrv/slapd-NNIT/schema/75ppolicy.ldif (lineno: 1) is invalid, error code 20 (Type or value exists) - attribute type pwdMinAge: Does not match the OID "1.3.6.1.4.1.42.2.27.8.1.2". Another attribute type is already using the name or OID.
> [26/Feb/2017:18:26:09 +0100] dse - Please edit the file to correct the reported problems and then restart the server.
>                                                            [FAILED]
>   *** Error: 1 instance(s) failed to start
> [root@centos6 dirsrv]#
> 
> notice: attribute type pwdMinAge: Does not match the OID 
> 
> I need to remove it before I can start dirsrv.
> 
> that file is the same from here:
> [root@centos6 dirsrv]# ll /etc/dirsrv/schema/75ppolicy.ldif
> -rw-r--r-- 1 root root 4699 Feb 19  2013 /etc/dirsrv/schema/75ppolicy.ldif
> [root@centos6 dirsrv]#
> 
> So now my ldap slapd-NNIT doesn't had this schema 75ppolicy.ldif.  I dont know if it has any affect.
> 
> Please help
> br Tuan


Hi,

You may find that your schema has been corrupted or migrated from
another server (ie sunds, or similar).

75ppolicy.ldif doesn't ship with directory server. We ship the password
policy in 02common.ldif.

It may be a good idea to backup your schema directory:

# Stop directory server here, ie systemctl stop dirsrv@instance
mv /etc/dirsrv/slapd-<instance>/schema /etc/dirsrv/slapd-<instance>/schema-backup
cp -a /usr/share/dirsrv/schema  /etc/dirsrv/slapd-<instance>/schema
restorecon -r /etc/dirsrv/slapd-<instance>
chown -R dirsrv: /etc/dirsrv/slapd-<instance>/schema
# Start Directory Server here


This should restore a "correct" 389-ds-base provided schema to your
instance.

Further issues from there are due to missing custom schema that you can
extract from /etc/dirsrv/slapd-<instance>/schema-backup
into /etc/dirsrv/slapd-<instance>/schema/99user.ldif as needed.

As I mention in my steps, I advise HIGHLY you backup your server before
performing any operation in the interest of safety. 


-- 
Sincerely,

William Brown
Software Engineer
Red Hat, Australia/Brisbane

Attachment: signature.asc
Description: This is a digitally signed message part

_______________________________________________
389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx
[Index of Archives]     [Fedora User Discussion]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux