Problem in importing schema in ADAM using ldapmodify

  • Thread starter Thread starter Ajay Bansal
  • Start date Start date
A

Ajay Bansal

I am trying to import schema into ADAM using ldapmodify . However, I get
the message that the user has insufficient access.

When I created that user in ADAM,I went to CN=Roles. There I right clicked
on CN=Administrator and added my user dn in the member attribute by
selecting <ADD ADAM ACCOUNT>.Hence, I made this user the administrator.

However, I got the error code 50 or 0x32 which means Insufficient access
rights.

What could be wrong? Do I need to do something else also before importing
the schema using ldapmodify?
 
If you are trying to modify the abstract schema

cn=Schema,cn=configuration,cn=<GUID>

you will need to use the account that you specified as the Administrator
account for the ADAM instance when you installed. For a native ADAM
principal to be able to do this requires a hotfix to be installed.

If you are still having problems or are just trying to add schema instances
(data)
to the instance please post your LDF file.

Thanks
Lee Flight
 
If you are trying to modify the abstract schema

cn=Schema,cn=configuration,cn=<GUID>

you will need to use the account that you specified as the Administrator
account for the ADAM instance when you installed. For a native ADAM
principal to be able to do this requires a hotfix to be installed.

If you are still having problems or are just trying to add schema instances
(data)
to the instance please post your LDF file.

Thanks
Lee Flight
 
Hi Lee,

What hotfix you are talking about? Form where can we get that hotfix?

Regards
Ajay
 
I need to import schema into ADAM.In order to do this, I understand that I
should give admin rights to a user in the config
partition(cn=configuration,cn={guid})since this user has admin rights over
ADAM schema.

To do this,I did the following:

1) I created a container cn=People in which I created a user having cn=user5

2) I added the user to the attribute “member†of
cn=administrator,cn=roles,cn=configuration,cn=roles.Thus,I gave it admin
rights.


I was able to do this as I had applied hot fix Q840991 to ADAM & added the
value ADAMAllowADAMSecurityPrincipalsInConfigPartition=1 to the attribute
ms-DS-Other-Settings in cn=directory service,cn=windows
nt,cn=services,cn=configuration,cn={guid}


However, this user is not getting authenticated.

The following was the info I provided :

User dn : cn=user5,cn=People,cn=configuration,cn={guid}
Search root: cn=configuration,cn={guid}

-Ajay
 
To check authentication run ldp.exe and then connect to the server/port for
your
ADAM instance and then bind specifying the User DN in the User field and the
password you have set with the Domain button unchecked.

Do you see a successful authentication message in the results pane?

Lee Flight
 
Back
Top