Sample of docker-compose.yml for rancherOs

[fruisoft]

Hi tiredofit !! Can you put a sample of docker-compose.yml running the 2 services? (fusion and ldap) Thanks

[fruisoft]

Nice !! Thank you very much for your quickness !! Let me tryrun it in RancherOS, I'll give you feedback later.

[fruisoft]

Cool !! The stack is running ... But just after login fusiondirectory gives me an error:

LDAP schema check reported errors:
You have installed the mixed groups plugin, but your schema configuration does not support this.

Can you help me with this issue? Thanks in advance!!

[fruisoft]

Looking ldap logs, there are an insertion failed of core*_update... wrong attribute at line 88...

04/10/2018 12:43:36executing 'ldapmodify -Y EXTERNAL -H ldapi:/// -f /etc/openldap/schema/fusiondirectory/core*_update.ldif'
04/10/2018 12:43:36SASL/EXTERNAL authentication started
04/10/2018 12:43:36SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
04/10/2018 12:43:36SASL SSF: 0
04/10/2018 12:43:36ldapmodify: wrong attributeType at line 88, entry "cn={6}core-fd-conf,cn=schema,cn=config"
04/10/2018 12:43:36Insertion failed!

[fruisoft]

Hi again, I've changed PLUGIN_MIXEDGROUPS=FALSE and now runs withouth problems. Thanks for all folk !!

[tiredofit]

Hi! Right on. Sorry, my default's that I gave you seemed to be a bit too much, I was just getting up to let you know to disable the mixed groups plugin for now. Enjoy! I've put a tonne of work into both the fusiondirectory and the openldap images ti make sure it is reliable for my production environment, and happy to share.

[fruisoft]

Hello Dave, something is wrong..impossible to create an user or a system in fusiondirectory :(

Also, when I go to configure and change TimeZone or Idiom, returns me errors for each plugin...

Do you have any idea? Thanks in advance.

[tiredofit]

That is strange. I don't believe the schemas are installed correctly. The first screenshot is related to the mail plugin, and the second one is showing its missing the dsa plugin. I am starting to think that with the latest FusionDirectory 1.22 release there is a problem with their schemas. Others on the mailing lists have been reporting strange situations as well. I'll find some time this weekend to pull this and try a new install and let you know. Now, you could expedite this and try to reapply the schemas from the ldap container itself. Enter the container, visit /etc/openldap/fusiondirectory/ and you can execute fusiondirectory-insert-schema -i mail.schema (or try fusiondirectory-insert-schema -m mail.schema) and also for the dsa* schema and that should get you going.

[fruisoft]

Yess... I've executed fusiondirectory-insert-schema -i *.schema into the ldap container; in folder /etc/openldap/schemas/fusiondirectory/ First we must to insert mail*.schema, if not, alias plugin insertion will fail.

All the schemas has been installed and show no errors un fusiondirectory by the moment :) Thanks Dave !! We wait for your feedback about the new image.