Seems like you jave duplicated attributes on your openldap try listing everythin with ldap search adapting the command below and then delete duplicate
ldapsearch -s base -b "" -D cn=Administrator,cn=users,dc=domain,dc=com -w 'password' -x -h 192.168.3.10 objectClass=* subschemasubentry Regards On Nov 30, 2011 11:16 PM, "DeadSun" <mwjpi...@gmail.com> wrote: > Thanks Leandro > > But I also according this article, when I add ldif to ldap, it show error: > $ sudo ldapadd -Y EXTERNAL -H ldapi:/// -f > keystone-2012.1/keystone/backends/ldap/keystone.ldif > SASL/EXTERNAL authentication started > SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth > SASL SSF: 0 > adding new entry "cn=keystone,cn=schema,cn=config" > ldap_add: Other (e.g., implementation specific) error (80) > additional info: olcObjectClasses: Duplicate option before ( > keystoneEnabled ) MAY ( mail $ userPassword ) ) > > 2011/11/30 Leandro Reox <leandro.r...@gmail.com> > >> Maybe this link can help you out : >> http://mirantis.blogspot.com/2011/08/ldap-identity-store-for-openstack.html >> >> Regards >> >> 2011/11/30 DeadSun <mwjpi...@gmail.com> >> >>> Now I according to keystone/test/etc/ldap.conf.template to set ldap >>> configuration in my keystone.conf >>> >>> But I have no idea that wich dn in ldap keystone used and there is no dn >>> in keystone.ldif . How to set it? >>> >>> Anyone using keystone with ldap can help me? >>> -- >>> 非淡薄无以明志,非宁静无以致远 >>> >>> _______________________________________________ >>> Mailing list: https://launchpad.net/~openstack >>> Post to : openstack@lists.launchpad.net >>> Unsubscribe : https://launchpad.net/~openstack >>> More help : https://help.launchpad.net/ListHelp >>> >>> >> > > > -- > 非淡薄无以明志,非宁静无以致远 >
_______________________________________________ Mailing list: https://launchpad.net/~openstack Post to : openstack@lists.launchpad.net Unsubscribe : https://launchpad.net/~openstack More help : https://help.launchpad.net/ListHelp
