I set up OpenLDAP 2.0.27 for authorization via pam_ldap and it works well. But when I add samba.schema in slapd.conf for my futher work - LDAP server doesn't start and exit with error message /usr/local/etc/openldap/schema/samba.schema: line 318: AttributeType not found: "gidnumber" Part of my slapd.conf include/usr/local/etc/openldap/schema/core.schema include/usr/local/etc/openldap/schema/cosine.schema include/usr/local/etc/openldap/schema/inetorgperson.schema include/usr/local/etc/openldap/schema/samba.schema include/usr/local/etc/openldap/schema/nis.schema As experiment, I replace samba.schema with a samba.schema from Samba-2.2.8a tarball. And LDAP server start without any error messages. Where is a bug?
reorder the includes for samba.schema and nis.schema in slapd.conf
After reordering all is OK. Quote from Samba-HOWTO Collection.html#passdb "Next, include the samba.schema file in slapd.conf. The sambaSamAccount object contains two attributes which depend upon other schema files. The 'uid' attribute is defined in cosine.schema and the 'displayName' attribute is defined in the inetorgperson.schema file. Both of these must be included before the samba.schema file. ## /etc/openldap/slapd.conf ## schema files (core.schema is required by default) include /etc/openldap/schema/core.schema ## needed for sambaSamAccount include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/samba.schema include /etc/openldap/schema/nis.schema ...." I think that documentation must be corrected for right order (samba after nis)
originally reported against 3.0.0beta3. CLeaning out non-production release versions.
database cleanup