Hello,I am working on getting pwm setup with FreeIPA. However I'm running into
some issues. I have it pretty much configured but I am getting error in the
logs for pwm.
Sep 4 11:09:21 pwm01 server: 2018-09-04T11:09:21Z, ERROR,
cluster.ClusterMachine, 5093 ERROR_CLUSTER_SERVICE_ERROR (error writing
database cluster heartbeat: 5079 ERROR_LDAP_DATA_ERROR (error writing cluster
data: javax.naming.directory.SchemaViolationException: [LDAP: error code 65 -
attribute "pwmresponseset" not allowed
I was also getting this:Sep 4 09:54:47 pwm01 server: 2018-09-04T09:54:47Z,
ERROR, ldap.LdapOperationsHelper, {#,health} error adding objectclass 'pwmUser'
to user uid=pwmtest,cn=users,cn=accounts,dc=example,dc=net:
com.novell.ldapchai.exception.ChaiOperationException:
javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - unknown
object class "pwmUser"
To resolve the above error I removed the pwmUser from the config in pwm. Not
sure if that was wise or not.
I have not extended the schema as
suggested:https://gist.github.com/PowerWagon/d794a1233d7943f1614d2ae5223e678a
When I did this dirsrv threw an error on my dev environment.
However in my single server at home this worked fine.
What I want to know is, once I restart dirsrv and ipa service is there a way to
validate the attribute and objectClasses are showing up in FreeIPA?
Also if anyone has set this up in the past and has any recommendations I will
gladly take them.
Thank you,Andrew_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
