On 04/25/2014 02:02 PM, Brian Arthur wrote:

Hi,

I’m trying to import an openldap-2.3.27 export into 389-ds-1.2.2-1

Note - 389-ds is just a "meta" package - please reference the version of 389-ds-base, which is the core LDAP server package.

and am getting the follow errors in the “rejects” file:

Invalid syntax. cn: value #0 invalid per syntax

Sample: cn:: TWFyaW8gUmH6bCBDaGFuZw==

I thought openldap 2.3 had strict syntax checking, that would not have allowed this value at all - perhaps it was turned off?

I’ve determined (I think) that these errors are from CN value pair that are base64 encoded LATIN1 characters.

Correct.

If I decode string(base64 command), convert it to UTF8(via iconv), I can import into Fedora389 successfully. I have a lot of entries with these values and am looking for an easy solution.

Has anyone come across this before and written a script to process an LDIF file or a different way to transfer the data? I’m not much of a programmer but I do have programmers in my organization that could assist me if a script is the best solution.

Scripting is the best way. I recommend python-ldap. I am not aware of a script that does this.

Thanks!

--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users