Closed jsumners closed 1 year ago
Admin can make changes. One just needs to connect correctly. Instead of using -Q
, use -x
with the standard tools, e.g.:
$ ldapwhoami -x -H ldapi:/// -w 'GoodNewsEveryone' -D 'cn=admin,dc=planetexpress,dc=com'
https://bugs.openldap.org/show_bug.cgi?id=10088 has been created to try and get information on the indexing error.
The original issue with long RDNs stated a problem with RDNs exceeding 132 characters. We have decided to reduce the length of the RDN in our test to 140 characters in order to avoid the bug in OpenLDAP 2.5. When OpenLDAP 2.6 is released, we should investigate if the bug still exists and restore our original test if not.
dc=planetexpress,dc=com
entries. See https://wiki.debian.org/LDAP/OpenLDAPSetup#Administrator_Access for details on potential fixes