Menu
▾
▴
RE: Modifying the RDN
|
From: Ayman A. <as...@at...> - 2002-10-02 09:56:50
|
Thanks alot reinhard, One thing here, in the example you mentioned, do I have to loop for a= ll the entries in the ou=3Dfirst, o=3Dworld to change their parent to ou= =3Dsecond, o=3Dworld, or can I do the change for all the leaf objects in one sho= t. Let me put the problem here if you have another solution, what I am r= ying to do is to allow an external application to authenticate users in the ou=3Dfirst,o=3Dworld from 5am to 5pm, and I do not want the users to = be authenticated after 5pm, so I am trying to move the ou=3Dfirst,o=3Dwo= rld to another place in the LDAP tree so that the external application canno= t do the authentication. Is there another way of doing this other than ren= aming the ou, e.g. is there a time-based access, or can I put a password on= the ou=3Dfirst,o=3Dworld that disallow applications from authenticating u= sers in this subtree? Regards, Ayman -----Original Message----- =46rom: Voglmaier, Reinhard Erich [mailto:rv...@Gl...= ] Sent: 26 =D1=CC=C8, 1423 10:55 =D5 To: 'Ayman Alashquar'; per...@li... Subject: RE: Modifying the RDN Ayman, this cannot work. I think you get an error message saying something l= ike: =09subtree rename not supported. the problem is that you try to move an entire subtree. since dn: ou=3Dfirst,o=3Dworld has children, that have the names dn: cn=3Dchild1, ou=3Dfirst,o=3Dworld dn: cn=3Dchild1, ou=3Dfirst,o=3Dworld ecc. they should change name also.in cn=3Dchild1, ou=3Dsecond, o=3Dwo= rld new superior does not mean that the children of this entry should cha= nge, but that the entry change its parent. in your case it would mean that you give ou=3Dfirst, o=3Dworld a new = daddy, but this is not your case. now back to your example, you should *=09add the new entry =09=09dn: ou=3Dsecond, o=3Dworld *=09change rdn of all children =09=09here you have to be very exact !!! =09=09dn: cn=3Dchild1, ou=3Dfirst, o=3Dworld =09=09changetype: modrdn =09=09newrdn: child1 =09=09deleterdn: 0 =09=09newsuperior: ou=3Dsecond, o=3Dworld cheers reinhard btw: exactly this case I gave as example in my upcoming book about LDAP. ( the title is not yet quite clear, but if you are interested in, dro= p me an e-mail ) > -----Original Message----- > From:=09Ayman Alashquar [SMTP:as...@at...] > Sent:=09mercoled=EC 2 ottobre 2002 00:23 > To:=09p...@li... > Subject:=09Modifying the RDN > > Hi all, > > Does any one know how to change the RDN withing a DN , e.g., the DN= =3D > ou=3Dfirst,o=3Dworld need to be changed to ou=3Dsecond,o=3Dworld kn= owing that the > original ou=3Dfirst has children entries that should not be deleted= . We are > using iPlanet LDAP server 4.x > > I have tried the following LDIF file using ldapmmodify but it didn= ot > work: > > dn: ou=3Dfirst,o=3Dworld > changetype: modrdn > newrdn: ou=3Dsecond > deleteoldrdn: 0 > newsuperior: o=3Dworld > > > Best Regards, > > Ayman Alashquar > > > > ------------------------------------------------------- > This sf.net email is sponsored by: DEDICATED SERVERS only $89! > Linux or FreeBSD, FREE setup, FAST network. Get your own server > today at http://www.ServePath.com/indexfm.htm |
