This FAQ page was useful : http://www.openldap.org/faq/data/cache/1385.html
Basically, the real problem is that your LDAP users don't have a structural object class. The fix should be to go to the Module Config page, clear out the Object class to add for given name? field, and enter inetOrgPerson into the Other objectClasses to add to new users field.
On 28/Feb/2008 17:30 Rob Tielen wrote ..
Iím using webmin 1.400 and virtualmin 3.522.
The ldap-useradmin config is:
imap_folders=old public sent-mail
Could you post the contents of your /etc/webmin/ldap-useradmin/config file (minus any passwords) ? I'd like to see if there are any other settings that could be causing problems ..
Also, you have the latest Webmin and Virtualmin versions, right?
On 28/Feb/2008 15:50 Rob Tielen wrote ..
Yes, when I donít fill in the surname field, I get Failed to add user to LDAP database : no structuralObjectClass operational attribute.
And yes, I added it to the correct field: LDAP properties for all new users.
Do you get an error if you don't fill in the surname field when adding a new user in the LDAP Users and Groups module?
Also, are you sure you added sn: unknown to LDAP properties for all new users and not modified users ?
On 28/Feb/2008 14:22 Rob Tielen wrote ..
First of all thanks for all the effort you put in helping all of us.
Maybe I can spend some hours to help you (e.g. creating howtoís or extra help pages in Dutch or English).
About the problem: unfortunately it doesnít help.
I have added to LDAP properties for all new users field sn: unknown.
This didnít help, so I went back to LDAP users and groups and tried to add a user without a surname (sn).
My expectation was that this user would be added with an sn of unknown (like if I filled in the lastname field), but it didnít.
Then I filled in a surname (xyz) and the entry was added to the ldap directory with a surname of: unknown xyz.
It appears to me that the existence of surname is checked and if it is not available, the entry is rejected.
When it is available, then the LDAP properties for all new users is added to the sn property.
Thanks again for your answer.
On 28/Feb/2008 10:17 Rob Tielen wrote ..
I have got virtualmin running and try to add users to an LDAP directory.
Everything works fine with LDAP users and groups when I switch on: Show fields for given name and surname and give a username in Last Name.
Unfortunately when I use virtualmin to add a new domain (and user), it fails: with failed to create administration user!
Virtualmin version is 3.522, webmin version 1.400.
Do you have any hints for me how to solve this problem?
This suggests that your LDAP schema requires that the 'sn' attribute by set.
You can have it do this automatically as follows :
- Go to the LDAP Users and Groups module, and click on Module Config.
- In the LDAP properties for all new users field, enter something like :
- Click Save, then re-try creating a domain in Virtualmin.