Hi, it looks like the latest OpenLDAP clients no longer have the -h option
but you can use the -H option or any other LDAP clients to accomplish
the same thing. I've updated the wiki page. Please note that our team
doesn't own the OpenLDAP packages.
The ldapadd operation is not required right now, but in the future we would
like to provide the ability to use an existing LDAP tree, so that's the
procedure that we'd recommend even though it's not necessarily needed
right now.
--
Endi S. Dewata
On Sat, Jun 4, 2022 at 6:40 PM Marc Sauton <msauton(a)redhat.com> wrote:
There isn't really a need to manually create the PKI LDAP tree
after the
dscreate command is run, because the pkispawn tool will do all the
necessary steps, adding itself a new suffix and db for the instance created.
I have the impression this is an extra step to verify adding some data to
the suffix provided in ds.inf works fine in the new LDAP server, the step
"Creating PKI LDAP Tree" may be skipped in
https://github.com/dogtagpki/pki/wiki/DS-Installation
other docs:
https://github.com/dogtagpki/pki/blob/master/docs/installation/ca/Install...
(
https://github.com/dogtagpki/pki/wiki/CA-Installation-Guide )
or
https://access.redhat.com/documentation/en-us/red_hat_certificate_system/...
The ldapadd command can take a -f option with a filename in parameter that
has a LDIF formatted list of statements.
Maybe there was a typo or an extra trailing space character from a
copy/paste or the $HOSTNAME was empty?
Thanks,
Marc S.
On Fri, Jun 3, 2022 at 11:03 PM brian <brian(a)sonicboom.org> wrote:
> I have tried the Creating PKI LDAP Tree on
>
https://github.com/dogtagpki/pki/wiki/DS-Installation twice. Both times
> that fails, as if invalid options were given. If I look at the man for
> ldapadd, I do not see -h as a valid option. Is that correct?
>
> These are the first few lines I get back
>
> ldapadd: unrecognized option -
> Add or modify entries from an LDAP server
>
> usage: ldapadd [options]
> The list of desired operations are read from stdin or from the
> file
> specified by "-f file".
> _______________________________________________
> Pki-users mailing list -- users(a)lists.dogtagpki.org
> To unsubscribe send an email to users-leave(a)lists.dogtagpki.org
> %(web_page_url)slistinfo%(cgiext)s/%(_internal_name)s
_______________________________________________
Pki-users mailing list -- users(a)lists.dogtagpki.org
To unsubscribe send an email to users-leave(a)lists.dogtagpki.org
%(web_page_url)slistinfo%(cgiext)s/%(_internal_name)s