Hi List I'm looking for a solution for the following ldapdelete error in a multimaster replication cfg with memberof pluging enabled locally on each server and excluded from replication agreement : ldapdelete -D "cn=directory manager" -W -x "ou=Users,ou=ds,dcxxxxx " "(uid=9995)" Enter LDAP Password: ldap_delete: Operation not allowed on non-leaf (66)
My DS version is : 389-ds-base-1.3.7.5-24.el7_5.x86_64
Running a basic search for this error seems this was a known bug in older version 7 years ago which I assume is been fixed. Thank you Isabella
Generally this means there is content still under the ou=Users. You can't do a subtree delete in LDAP, so that's probably the error here. Can you check what's under the OU?
On 14 Oct 2020, at 10:32, Ghiurea, Isabella Isabella.Ghiurea@nrc-cnrc.gc.ca wrote:
Hi List I’m looking for a solution for the following ldapdelete error in a multimaster replication cfg with memberof pluging enabled locally on each server and excluded from replication agreement : ldapdelete -D "cn=directory manager" -W -x "ou=Users,ou=ds,dcxxxxx " "(uid=9995)" Enter LDAP Password: ldap_delete: Operation not allowed on non-leaf (66)
My DS version is : 389-ds-base-1.3.7.5-24.el7_5.x86_64
Running a basic search for this error seems this was a known bug in older version 7 years ago which I assume is been fixed. Thank you Isabella _______________________________________________ 389-users mailing list -- 389-users@lists.fedoraproject.org To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject....
— Sincerely,
William Brown
Senior Software Engineer, 389 Directory Server SUSE Labs, Australia
ldapdelete has a "-r" option to recursiviely delete. So that would solve your problem, but you better make sure you know what is under that user entry before blindly removing it and its child entries :-)
On 10/13/20 10:23 PM, William Brown wrote:
Generally this means there is content still under the ou=Users. You can't do a subtree delete in LDAP, so that's probably the error here. Can you check what's under the OU?
On 14 Oct 2020, at 10:32, Ghiurea, Isabella Isabella.Ghiurea@nrc-cnrc.gc.ca wrote:
Hi List I’m looking for a solution for the following ldapdelete error in a multimaster replication cfg with memberof pluging enabled locally on each server and excluded from replication agreement : ldapdelete -D "cn=directory manager" -W -x "ou=Users,ou=ds,dcxxxxx " "(uid=9995)" Enter LDAP Password: ldap_delete: Operation not allowed on non-leaf (66)
My DS version is : 389-ds-base-1.3.7.5-24.el7_5.x86_64
Running a basic search for this error seems this was a known bug in older version 7 years ago which I assume is been fixed. Thank you Isabella _______________________________________________ 389-users mailing list -- 389-users@lists.fedoraproject.org To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject....
— Sincerely,
William Brown
Senior Software Engineer, 389 Directory Server SUSE Labs, Australia _______________________________________________ 389-users mailing list -- 389-users@lists.fedoraproject.org To unsubscribe send an email to 389-users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproject....
389-users@lists.fedoraproject.org