Try to join a domain with no previous posixAccount. Simple perl script to create the user (machine account). The domain join fails with: failed to modify user with uid = xptest$, error: modify/add: displayName: value #0 already exists (Success) You get an 'access denied' error on the client workstation. However, if the posixAccount already exists, the join succeeds. Curious bug. Could be in my scripts. OpenLDAP 2.1.20 + Berkeley db 5.1.25
Interesting, wasn't a race condition. Was a problem trying to change the displayName attribute from xptest$ to XPTEST$. Since the displayName attribute is case-insensitive, this failed. Changing the strcmp() in make_ldap_mod() to a StrCaseCmp() fixed the problem.
originally reported against 3.0aph24. Bugzilla spring cleaning. Removing old alpha versions.
sorry for the same, cleaning up the database to prevent unecessary reopens of bugs.