Hello,I am working on getting pwm setup with FreeIPA. However I'm running into some
issues. I have it pretty much configured but I am getting error in the logs for pwm.
Sep 4 11:09:21 pwm01 server: 2018-09-04T11:09:21Z, ERROR, cluster.ClusterMachine, 5093
ERROR_CLUSTER_SERVICE_ERROR (error writing database cluster heartbeat: 5079
ERROR_LDAP_DATA_ERROR (error writing cluster data:
javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - attribute
"pwmresponseset" not allowed
I was also getting this:Sep 4 09:54:47 pwm01 server: 2018-09-04T09:54:47Z, ERROR,
ldap.LdapOperationsHelper, {#,health} error adding objectclass 'pwmUser' to user
uid=pwmtest,cn=users,cn=accounts,dc=example,dc=net:
com.novell.ldapchai.exception.ChaiOperationException:
javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - unknown object
class "pwmUser"
To resolve the above error I removed the pwmUser from the config in pwm. Not sure if that
was wise or not.
I have not extended the schema as
suggested:https://gist.github.com/PowerWagon/d794a1233d7943f1614d2ae5223e...
When I did this dirsrv threw an error on my dev environment.
However in my single server at home this worked fine.
What I want to know is, once I restart dirsrv and ipa service is there a way to validate
the attribute and objectClasses are showing up in FreeIPA?
Also if anyone has set this up in the past and has any recommendations I will gladly take
them.
Thank you,Andrew