Highlighted
Trusted Contributor.
Trusted Contributor.
846 views

LDAP Search for default ACL template mssing in ldif output


We recently upgraded almost all of our eDirectory environments to
8.8.6.4 64 bit on Redhat Enterprise Linux 64 bit. We finally made the
jump from eDirectory 8.7.3.10 directly to this version.

All of our trees are purely LDAP trees and i wanted to remove some of
the default templates ACLS that are create when a new user is created to
save space in the directory and tune the tree a bit. We also want to add
a default ACL so that any group created will have read rights to itself
by default.

After reading a TID on default ACL templates i attemped to export
inetorgperson per the TID and the default template information was
missing from the schema entry.

This scared me as we just did an upgrade and i immediately went and
created a new user to see if the default ACLS did get created...<whew>
they did. So the settings are in the directory but are not exported in
the LDIF. I went over and tested the same query with an eDirectory
8.7.3.10 server and the results were as expected from the TID.

Can anyone provide some insight to the delima here 🙂

Below are the results from a eDirectory 8.8.6.4 server and i did test
this on every tree and server we have with the exact same results if
they were upgraded to the current version of 8.8.6.4 64 bit on Redhat
Enterprise Linux 5 64 bit

-bash-3.2$ /opt/novell/eDirectory/bin/ldapsearch -h 127.0.0.1 -p 636 -e
/opt/eDirectory/certs/XXXXX.der -s base -b cn=schema
objectclasses=inetorgperson
version: 1

#
# filter: objectclasses=inetorgperson
# requesting: ALL
#

# schema
dn: cn=schema
objectClasses: ( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson' SUP
organization
alPerson STRUCTURAL MAY ( groupMembership $ ndsHomeDirectory $
loginAllowedTi
meMap $ loginDisabled $ loginExpirationTime $ loginGraceLimit $
loginGraceRem
aining $ loginIntruderAddress $ loginIntruderAttempts $
loginIntruderResetTim
e $ loginMaximumSimultaneous $ loginScript $ loginTime $
networkAddressRestri
ction $ networkAddress $ passwordsUsed $ passwordAllowChange $
passwordExpira
tionInterval $ passwordExpirationTime $ passwordMinimumLength $
passwordRequi
red $ passwordUniqueRequired $ printJobConfiguration $ privateKey $
Profile $
publicKey $ securityEquals $ accountBalance $ allowUnlimitedCredit $
minimum
AccountBalance $ messageServer $ Language $ ndsUID $ lockedByIntruder
$ serve
rHolds $ lastLoginTime $ typeCreatorMap $ higherPrivileges $
printerControl $
securityFlags $ profileMembership $ Timezone $ audio $
businessCategory $ ca
rLicense $ departmentNumber $ employeeNumber $ employeeType $
givenName $ hom
ePhone $ homePostalAddress $ initials $ jpegPhoto $ labeledUri $ mail
$ manag
er $ mobile $ pager $ ldapPhoto $ preferredLanguage $ roomNumber $
secretary
$ uid $ userCertificate $ userSMIMECertificate $ x500UniqueIdentifier
$ displ
ayName $ userPKCS12 $ sASServiceDN $ sASSecretStore $
sASSecretStoreKey $ sAS
SecretStoreData $ sASPKIStoreKeys $ nDSPKIUserCertificateInfo $
nDSPKIKeystor
e $ rADIUSActiveConnections $ rADIUSAttributeLists $
rADIUSConcurrentLimit $
rADIUSConnectionHistory $ rADIUSDefaultProfile $ rADIUSDialAccessGroup
$ rADI
USEnableDialAccess $ rADIUSPassword $ rADIUSServiceList $
sssProxyStoreKey $
sssProxyStoreSecrets $ sssServerPolicyOverrideDN $
iPrintiCMPrinterFlags $ iP
rintiCMPrinterList $ iPrintiCMClientFlags $ iPrintiCMClientProxyURI $
iPrinti
CMClientTrayURI $ nDPSControlFlags $ nDPSDefaultPrinter $
nDPSDefaultPublicPr
inter $ nDPSPrinterInstallList $ nDPSPublicPrinterInstallList $
nDPSPrinterIn
stallTimestamp $ nDPSReplaceAllClientPrinters $ userPassword $
nisUserGroupDo
main $ o $ nRDRegistryData $ nRDRegistryIndex $ nrmGroupMonitorData )
)

# search result
# search: 2
# result: 0 Success

# numResponses: 2
# numEntries: 1


--
Dieseloreo
------------------------------------------------------------------------
Dieseloreo's Profile: http://forums.novell.com/member.php?userid=36110
View this thread: http://forums.novell.com/showthread.php?t=449619

Labels (1)
0 Likes
16 Replies
Highlighted
Knowledge Partner
Knowledge Partner

Re: LDAP Search for default ACL template mssing in ldif output

On Thu, 15 Dec 2011 07:06:01 +0000, Dieseloreo wrote:

> All of our trees are purely LDAP trees and i wanted to remove some of
> the default templates ACLS that are create when a new user is created to
> save space in the directory and tune the tree a bit. We also want to add
> a default ACL so that any group created will have read rights to itself
> by default.


Note that you can't add to the default ACL template. Or, to be pedantic,
you can, but it doesn't do anything.


> After reading a TID on default ACL templates i attemped to export
> inetorgperson per the TID and the default template information was
> missing from the schema entry.


Weird. What happens if you export the entire schema? I've done this
dozens of times, all versions of eDir, and it has always worked for me.


--
--------------------------------------------------------------------------
David Gersic dgersic_@_niu.edu
Knowledge Partner http://forums.novell.com

Please post questions in the forums. No support provided via email.

0 Likes
Highlighted
Trusted Contributor.
Trusted Contributor.

Re: LDAP Search for default ACL template mssing in ldif output


There is not ouput of any ACL template information for any object during
a full schema export.


--
Dieseloreo
------------------------------------------------------------------------
Dieseloreo's Profile: http://forums.novell.com/member.php?userid=36110
View this thread: http://forums.novell.com/showthread.php?t=449619

0 Likes
Highlighted
Absent Member.
Absent Member.

Re: LDAP Search for default ACL template mssing in ldif output


I don't have access to my desktop right now (so the info isn't on my
laptop or the tablet) but I seem to recall the Default ACL for
inetorgperson is actually inherited from (perhaps) organizationalPerson
(aka Person).


--
peterkuo
------------------------------------------------------------------------
peterkuo's Profile: http://forums.novell.com/member.php?userid=88
View this thread: http://forums.novell.com/showthread.php?t=449619


-- eDirectory Rules! Peter www.DreamLAN.com
0 Likes
Highlighted
Trusted Contributor.
Trusted Contributor.

Re: LDAP Search for default ACL template mssing in ldif output


Nope...and it appears it worked in eDirectory 8.7.3.x and if i use a
mixed tree with both versions...the 8.7.3.x server spits the info out
correctly :). I would assume that the Schema should be the same on every
server or there would be a wormhole back to the 18th century if it
didnt.

version: 1

#
# filter: objectclasses=person
# requesting: ALL
#

# schema
dn: cn=schema
objectClasses: ( 2.5.6.6 NAME 'Person' SUP ndsLoginProperties
STRUCTURAL MUST
( cn $ sn ) MAY ( description $ seeAlso $ telephoneNumber $ fullName $
givenN
ame $ initials $ generationQualifier $ uid $ assistant $
assistantPhone $ cit
y $ st $ company $ co $ directReports $ manager $ mailstop $ mobile $
persona
lTitle $ pager $ workforceID $ instantMessagingID $ preferredName $
photo $ j
obCode $ siteLocation $ employeeStatus $ employeeType $ costCenter $
costCent
erDescription $ tollFreePhoneNumber $ otherPhoneNumber $
managerWorkforceID $
roomNumber $ jackNumber $ departmentNumber $ vehicleInformation $
accessCard
Number $ isManager $ userPassword ) )

# search result
# search: 2
# result: 0 Success

# numResponses: 2
# numEntries: 1


--
Dieseloreo
------------------------------------------------------------------------
Dieseloreo's Profile: http://forums.novell.com/member.php?userid=36110
View this thread: http://forums.novell.com/showthread.php?t=449619

0 Likes
Highlighted
Absent Member.
Absent Member.

Re: LDAP Search for default ACL template mssing in ldif output

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I exported the schema from my tree (8.8 SP6 Patch 2 I think) using
ldapsearch and it showed the default ACL template correctly for
inetOrgPerson. Maybe a new problem with patch 4? Any chance of testing
in a new test tree?

Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=b9oC
-----END PGP SIGNATURE-----
0 Likes
Highlighted
Trusted Contributor.
Trusted Contributor.

Re: LDAP Search for default ACL template mssing in ldif output


Sure...I can do anything 🙂

I can actually remove the patch applied to see if it still does the
same thing.

Andi have tried this from a brand spanking new tree with the same
results 8.8.6.4 and also seems to do the same with 8.8.6.3 as well.


--
Dieseloreo
------------------------------------------------------------------------
Dieseloreo's Profile: http://forums.novell.com/member.php?userid=36110
View this thread: http://forums.novell.com/showthread.php?t=449619

0 Likes
Highlighted
Trusted Contributor.
Trusted Contributor.

Re: LDAP Search for default ACL template mssing in ldif output


fresh install of eDirectory 8.8.6


[root@edirt02 corp]# /opt/novell/eDirectory/bin/ldapsearch -h 127.0.0.1
-p 389 -s base -b cn=schema objectclasses=inetorgperson
version: 1

#
# filter: objectclasses=inetorgperson
# requesting: ALL
#

# schema
dn: cn=schema
objectClasses: ( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson' SUP
organization
alPerson STRUCTURAL MAY ( groupMembership $ ndsHomeDirectory $
loginAllowedTi
meMap $ loginDisabled $ loginExpirationTime $ loginGraceLimit $
loginGraceRem
aining $ loginIntruderAddress $ loginIntruderAttempts $
loginIntruderResetTim
e $ loginMaximumSimultaneous $ loginScript $ loginTime $
networkAddressRestri
ction $ networkAddress $ passwordsUsed $ passwordAllowChange $
passwordExpira
tionInterval $ passwordExpirationTime $ passwordMinimumLength $
passwordRequi
red $ passwordUniqueRequired $ printJobConfiguration $ privateKey $
Profile $
publicKey $ securityEquals $ accountBalance $ allowUnlimitedCredit $
minimum
AccountBalance $ messageServer $ Language $ ndsUID $ lockedByIntruder
$ serve
rHolds $ lastLoginTime $ typeCreatorMap $ higherPrivileges $
printerControl $
securityFlags $ profileMembership $ Timezone $ sASServiceDN $
sASSecretStore
$ sASSecretStoreKey $ sASSecretStoreData $ sASPKIStoreKeys $
userCertificate
$ nDSPKIUserCertificateInfo $ nDSPKIKeystore $
rADIUSActiveConnections $ rAD
IUSAttributeLists $ rADIUSConcurrentLimit $ rADIUSConnectionHistory $
rADIUSD
efaultProfile $ rADIUSDialAccessGroup $ rADIUSEnableDialAccess $
rADIUSPasswo
rd $ rADIUSServiceList $ audio $ businessCategory $ carLicense $
departmentNu
mber $ employeeNumber $ employeeType $ displayName $ givenName $
homePhone $
homePostalAddress $ initials $ jpegPhoto $ labeledUri $ mail $ manager
$ mobi
le $ o $ pager $ ldapPhoto $ preferredLanguage $ roomNumber $
secretary $ uid
$ userSMIMECertificate $ x500UniqueIdentifier $ userPKCS12 $
sssProxyStoreKe
y $ sssProxyStoreSecrets $ sssServerPolicyOverrideDN ) )

# search result
# search: 2
# result: 0 Success

# numResponses: 2
# numEntries: 1


--
Dieseloreo
------------------------------------------------------------------------
Dieseloreo's Profile: http://forums.novell.com/member.php?userid=36110
View this thread: http://forums.novell.com/showthread.php?t=449619

0 Likes
Highlighted
Absent Member.
Absent Member.

Re: LDAP Search for default ACL template mssing in ldif output

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Tested my IDM 4.0.1 Integrated Install system.... also has the templates
unlike yours. Any reason your schema files for this new tree would be
different from a totally new system's schema files (second instance on
an existing (and somehow broken) server, for example)?

Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=CX+E
-----END PGP SIGNATURE-----
0 Likes
Highlighted
Trusted Contributor.
Trusted Contributor.

Re: LDAP Search for default ACL template mssing in ldif output


I get this from a brand new server built from scratch .....

1 instance....new tree.

1 instance server addeed to an existing tree...all the same!

now my question to everyone! what OS are you using? OES?

and would a rhel5 build have anthing else different from OES?


--
Dieseloreo
------------------------------------------------------------------------
Dieseloreo's Profile: http://forums.novell.com/member.php?userid=36110
View this thread: http://forums.novell.com/showthread.php?t=449619

0 Likes
Highlighted
Absent Member.
Absent Member.

Re: LDAP Search for default ACL template mssing in ldif output

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I'm on straight SLES, 10 and 11. I guess I need to find some RHEL media
to set that up.

Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=A4U6
-----END PGP SIGNATURE-----
0 Likes
Highlighted
Trusted Contributor.
Trusted Contributor.

Re: LDAP Search for default ACL template mssing in ldif output


ah ha!!! found it!

OPTION ON THE LDAP SERVER OBJECT

"Enable old ADSI and Netscape schema output"

/opt/novell/eDirectory/bin/ldapconfig -t $TREENAME -a $ADMINDOT -w
$PASS -s "nonStdClientSchemaCompatMode=yes"

when you enable this option in eDirectory 8.8.6.x, the default
templates disapear in a ldapsearch.

post is as follows with and without the option.

without
-----------------------------------------------------------------------------------
[root@edirt02 corp]# /opt/novell/eDirectory/bin/ldapsearch -h 127.0.0.1
-p 389 -s base -b cn=schema objectclasses=inetorgperson
version: 1

#
# filter: objectclasses=inetorgperson
# requesting: ALL
#

# schema
dn: cn=schema
objectClasses: ( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson' SUP
organization
alPerson STRUCTURAL MAY ( groupMembership $ ndsHomeDirectory $
loginAllowedTi
meMap $ loginDisabled $ loginExpirationTime $ loginGraceLimit $
loginGraceRem
aining $ loginIntruderAddress $ loginIntruderAttempts $
loginIntruderResetTim
e $ loginMaximumSimultaneous $ loginScript $ loginTime $
networkAddressRestri
ction $ networkAddress $ passwordsUsed $ passwordAllowChange $
passwordExpira
tionInterval $ passwordExpirationTime $ passwordMinimumLength $
passwordRequi
red $ passwordUniqueRequired $ printJobConfiguration $ privateKey $
Profile $
publicKey $ securityEquals $ accountBalance $ allowUnlimitedCredit $
minimum
AccountBalance $ messageServer $ Language $ ndsUID $ lockedByIntruder
$ serve
rHolds $ lastLoginTime $ typeCreatorMap $ higherPrivileges $
printerControl $
securityFlags $ profileMembership $ Timezone $ sASServiceDN $
sASSecretStore
$ sASSecretStoreKey $ sASSecretStoreData $ sASPKIStoreKeys $
userCertificate
$ nDSPKIUserCertificateInfo $ nDSPKIKeystore $
rADIUSActiveConnections $ rAD
IUSAttributeLists $ rADIUSConcurrentLimit $ rADIUSConnectionHistory $
rADIUSD
efaultProfile $ rADIUSDialAccessGroup $ rADIUSEnableDialAccess $
rADIUSPasswo
rd $ rADIUSServiceList $ audio $ businessCategory $ carLicense $
departmentNu
mber $ employeeNumber $ employeeType $ displayName $ givenName $
homePhone $
homePostalAddress $ initials $ jpegPhoto $ labeledUri $ mail $ manager
$ mobi
le $ o $ pager $ ldapPhoto $ preferredLanguage $ roomNumber $
secretary $ uid
$ userSMIMECertificate $ x500UniqueIdentifier $ userPKCS12 $
sssProxyStoreKe
y $ sssProxyStoreSecrets $ sssServerPolicyOverrideDN ) X-NDS_NAME
'User' X-ND
S_NOT_CONTAINER '1' X-NDS_NONREMOVABLE '1' X-NDS_ACL_TEMPLATES (
'2#subtree#[
Self]#[All Attributes Rights]' '6#entry#[Self]#loginScript'
'1#subtree#[Root
Template]#[Entry Rights]' '2#entry#[Public]#messageServer'
'2#entry#[Root Tem
plate]#groupMembership' '6#entry#[Self]#printJobConfiguration'
'2#entry#[Root
Template]#networkAddress') )

# search result
# search: 2
# result: 0 Success

# numResponses: 2
# numEntries: 1


with
-----------------------------------------------------------------------------------
[root@edirt02 corp]# /opt/novell/eDirectory/bin/ldapsearch -h 127.0.0.1
-p 389 -s base -b cn=schema objectclasses=inetorgperson
version: 1

#
# filter: objectclasses=inetorgperson
# requesting: ALL
#

# schema
dn: cn=schema
objectClasses: ( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson' SUP
organization
alPerson STRUCTURAL MAY ( groupMembership $ ndsHomeDirectory $
loginAllowedTi
meMap $ loginDisabled $ loginExpirationTime $ loginGraceLimit $
loginGraceRem
aining $ loginIntruderAddress $ loginIntruderAttempts $
loginIntruderResetTim
e $ loginMaximumSimultaneous $ loginScript $ loginTime $
networkAddressRestri
ction $ networkAddress $ passwordsUsed $ passwordAllowChange $
passwordExpira
tionInterval $ passwordExpirationTime $ passwordMinimumLength $
passwordRequi
red $ passwordUniqueRequired $ printJobConfiguration $ privateKey $
Profile $
publicKey $ securityEquals $ accountBalance $ allowUnlimitedCredit $
minimum
AccountBalance $ messageServer $ Language $ ndsUID $ lockedByIntruder
$ serve
rHolds $ lastLoginTime $ typeCreatorMap $ higherPrivileges $
printerControl $
securityFlags $ profileMembership $ Timezone $ sASServiceDN $
sASSecretStore
$ sASSecretStoreKey $ sASSecretStoreData $ sASPKIStoreKeys $
userCertificate
$ nDSPKIUserCertificateInfo $ nDSPKIKeystore $
rADIUSActiveConnections $ rAD
IUSAttributeLists $ rADIUSConcurrentLimit $ rADIUSConnectionHistory $
rADIUSD
efaultProfile $ rADIUSDialAccessGroup $ rADIUSEnableDialAccess $
rADIUSPasswo
rd $ rADIUSServiceList $ audio $ businessCategory $ carLicense $
departmentNu
mber $ employeeNumber $ employeeType $ displayName $ givenName $
homePhone $
homePostalAddress $ initials $ jpegPhoto $ labeledUri $ mail $ manager
$ mobi
le $ o $ pager $ ldapPhoto $ preferredLanguage $ roomNumber $
secretary $ uid
$ userSMIMECertificate $ x500UniqueIdentifier $ userPKCS12 $
sssProxyStoreKe
y $ sssProxyStoreSecrets $ sssServerPolicyOverrideDN ) )

# search result
# search: 2
# result: 0 Success

# numResponses: 2
# numEntries: 1


--
Dieseloreo
------------------------------------------------------------------------
Dieseloreo's Profile: http://forums.novell.com/member.php?userid=36110
View this thread: http://forums.novell.com/showthread.php?t=449619

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.