Page 2 of 2 FirstFirst 12
Results 11 to 20 of 20

Thread: LDAP schema error

  1. #11
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    If you look at the wiki section that I linked, does it look like those steps have been followed on your system? Meaning do those extra .schema files exist as well as the slapd.conf.in modifications?

  2. #12
    Join Date
    Mar 2010
    Posts
    13
    Rep Power
    5

    Default

    samba.schema was not present and neither lines were in slapd.conf.in. What's more, slapd.conf.in was obviously changed when I upgraded, from the time stamp.

    I have made the changes but am still reading .....

  3. #13
    Join Date
    Mar 2010
    Posts
    13
    Rep Power
    5

    Default

    OK, after the schema files were copied in and slapd.conf.in was updated, the user side of Zimbra seems to be working perfectly. Thank you!!!

    Also, I can now get into the admin screen. I'm back to the very original problem.

    When I try to add an account, I get the following error.

    Code:
    Message: invalid request: createAccount invalid schema change: [LDAP: error code 65 - object class 'posixAccount' requires attribute 'uidNumber'] Error code: service.INVALID_REQUEST Method: CreateAccountRequest Details:soap:Sender


    I don't see anything relevant in the log files you mentioned:

    /var/log/zimbra.log
    /opt/zimbra/mailbox.log
    /opt/zimbra/audit.log
    Last edited by TomB17; 03-11-2010 at 03:32 PM.

  4. #14
    Join Date
    Mar 2010
    Posts
    13
    Rep Power
    5

    Default

    I apologize for making so many posts.

    I did some testing and found a relevant entry in /opt/zimbra/log/mailbox.log after a failed mailbox add.

    Code:
    Mar 11 16:37:12 zion slapd[15959]: Entry (uid=johnny,ou=people,dc=liveglobalbid,dc=com): object class 'posixAccount' requires attribute 'uidNumber'
            at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3048)
            at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2963)
            at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2769)
            at com.sun.jndi.ldap.LdapCtx.c_createSubcontext(LdapCtx.java:784)
            at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_createSubcontext(ComponentDirContext.java:319)
            at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:248)
            at javax.naming.directory.InitialDirContext.createSubcontext(InitialDirContext.java:183)
            at com.zimbra.cs.account.ldap.ZimbraLdapContext.createEntry(ZimbraLdapContext.java:598)
            ... 33 more

  5. #15
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    Ok a couple of questions here:
    Do you know why the previous admin had even started to setup posix/samba attributes on the accounts? Do you have another server that might be using it as an authentication source? Does it have Samba installed, or another server have it?

    If no to those questions... do you actually want this installed on here? There is no benefit to having it installed if you are not going to use the functionality of it (no real harm though other then a bit of extra time spent on upgrades for the 5.0.x branch).

    Before you go much further you should ask yourself this, and then we can either work to get that integration working properly, or remove it so it will no longer cause errors.

  6. #16
    Join Date
    Mar 2010
    Posts
    13
    Rep Power
    5

    Default

    I don't know why the previous admin installed posix/samba. We have two systems but the second is simply an rsync'd copy of the first. I don't believe they are a cluster but I'm somewhat new to Zimbra so I might be missing something.

    Samba is installed on both systems but is not running on either.

    I would like to simplify the configuration, if possible.

    I really appreciate your time and expertise. Thank you.

  7. #17
    Join Date
    Mar 2010
    Posts
    13
    Rep Power
    5

    Default

    ... I just found out, the second mail server is a test system. No cluster.

  8. #18
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    Well if you aren't using the samba/posix stuff for anything, then you probably want to remove it.

    Try running these commands as the zimbra user and see if you get any errors, if not, see if it got rid of the other errors you are getting about posix attributes:
    Code:
    zmprov mcf -zimbraAccountExtraObjectClass posixAccount 
    zmprov mcf -zimbraAccountExtraObjectClass sambaSamAccount
    You might also have to do some removal of the samba/posix specific attributes.

  9. #19
    Join Date
    Mar 2010
    Posts
    13
    Rep Power
    5

    Thumbs up

    Everything is now working. I can add new accounts.

    Thank you very much. This is a huge gain.

    I will now set about reading everything I can so I'm less helpless in the future.

    I really appreciate the help.

  10. #20
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    Glad it was that simple

    You might want to try removing the
    Code:
    include "/opt/zimbra/openldap/etc/openldap/schema/nis.schema"
    include "/opt/zimbra/openldap/etc/openldap/schema/samba.schema"
    lines, as well as the index and other related lines. Restart Zimbra and see if you get any errors.

    Also don't forget to remove those admin extensions if you installed them.

Similar Threads

  1. Installation problems from 5.0.11 to 6.0.4
    By dcampbell in forum Installation
    Replies: 0
    Last Post: 12-30-2009, 02:37 PM
  2. Installation zimbra Initializing ldap...failed. (28416)
    By farrukh.nadeem in forum Installation
    Replies: 10
    Last Post: 08-14-2009, 07:52 AM
  3. [SOLVED] Error running mailboxd after script backup
    By ttortosa in forum Administrators
    Replies: 5
    Last Post: 10-22-2008, 02:33 AM
  4. Zimbra fails after working for 2 weeks
    By Linsys in forum Administrators
    Replies: 10
    Last Post: 10-07-2008, 01:42 AM
  5. LDAP error code 49 - invalid credentials
    By fieze in forum Installation
    Replies: 8
    Last Post: 05-09-2008, 06:12 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •