[Ldapdns-devel] Re: ldapdns2 with empty LDAP_SUFFIX

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

On Sat, 2005-03-26 at 14:20 -0400, Alejandro Mery wrote:
> Hi, i have a test (attached), but if i set LDAP_SUFFIX to empty, or 
> remove the env var, it stop working.
> 
> i need to work with an empty base because i have to serve multiple 
> namingContexts.

No, you don't.

You do need LDAP_SUFFIX set to an empty string, but you also need SCHEMA
set to "ldapdns" and you need an "associatedDomain" attribute on every
object with an nSRecord that names itself, that is:

dn: dc=test,dc=org,ou=dns,ou=service,dc=localhost,dc=localnet
objectClass: top
objectClass: dNSDomain
objectClass: dcObject
dc: test
cNAMERecord: test.org
mXRecord: 127.0.0.1
nSRecord: ns1.test.org
sOARecord: 1 3600 900 36000000 3600

should additionally have:

associatedDomain: test.org

You'll want that attribute indexed as well.

FWIW: mXRecords aren't allowed to be IP addresses, and this CNAME is
absolutely worthless unless you like confusing BIND4 resolvers.

You don't need that sOARecord unless you've got an ns2.test.org. that
doesn't run LDAPDNS.