Openldap "no global superior knowledge"

Question

Openldap "no global superior knowledge"

When I:

ldapadd -f pop01.ldif -x -D "cn=Manager,dc=ldap,dc=beonegroup,dc=be" -w 1234

I get:

 adding new entry "dc=ldap,dc=beonegroup,dc=org" ldapadd: Server is unwilling to perform (53) additional info: no global superior knowledge

Here is my slapd.conf:

 database bdb suffix "dc=ldap,dc=beonegroup,dc=be" rootdn "cn=Manager,dc=ldap,dc=beonegroup,dc=be" rootpw 1234 directory /var/lib/ldap/beoneDirectory index objectClass eq,pres index ou,cn,mail,surname,givenname eq,pres,sub index uidNumber,gidNumber,loginShell eq,pres index uid,memberUid eq,pres,sub index nisMapName,nisMapEntry eq,pres,sub

And my file used to fill:

 [ root@local beoneDirectory]# pwd /var/lib/ldap/beoneDirectory [ root@local beoneDirectory]# cat pop01.ldif dn: dc=ldap,dc=beone,dc=org objectClass: top objectClass: dcObject objectClass: organization dc: beone o: beone description: ldap.beone.be dn: o=beone objectClass: top objectClass: organization o: beone description: Beone dn: cn=Manager,o=beone objectClass: organizationalRole cn: Manager description: LDAP Directory Administrator dn: ou=Employes,o=beone ou: Employes objectClass: top objectClass: organizationalUnit description: Employes beone dn: ou=Clients,o=beone ou: Clients objectClass: top objectClass: organizationalUnit description: Clients beone #1ere entrée dn: cn=Benoit Le,ou=Employes,o=beonegroup cn: Benoit Le objectClass: top objectClass: person objectClass: organizationalPerson objectClass: inetOrgPerson mail: benoit@beone.be givenname: Benoit sn: Lecomte ou: Employes street: 29 rue de cp l: jumet postalCode: 6040 telephoneNumber: 04942311 mobile: 01234345 #2eme employé dn: cn=Matteo Di,ou=Employes,o=beonegroup cn: Matteo Di objectClass: top objectClass: person objectClass: organizationalPerson objectClass: inetOrgPerson mail: mat@beone.be

d d d d d d d d d d d d d d

I know this is a problem related to slapd.conf, openldap does not know where to insert my records, but I really do not see how to point it

+6

openldap

user3378395 Mar 04 '14 at 9:51

source share

2 answers

tetra · Answer 1 · 2014-03-07T23:18:49+0000

Your database is called (has a suffix):

 dc=ldap,dc=beonegroup,dc=be

You are in ldif trying to add material to

 dn: dc=ldap,dc=beone,dc=org

This is somewhat equivalent to creating a directory called /something , and then trying to create the file /some/file . It will not work because the /some directory does not exist.

Remember that LDAP data is organized in a hierarchical structure, that is, in the form of a tree, such as directories and files. The word superior refers to a level higher (closer to the top), similar to the parent directory (closer to the root) in the example file system.

On the file system, you will get the error /some/file: No such file or directory

Perhaps the LDAP error was better worded.

Jay · Answer 2 · 2014-03-05T14:15:59+0000

The structure of the domain component that you defined, "dc = ldap, dc = beonegroup, dc = be" does not match your input entry in the first line of pop01.ldif.

Try changing the first line in your pop01.ldif from dc = org to dc = be and try again.

Openldap "no global superior knowledge"

More articles: