Unable to Start Solserver After Applying Custom Attribute

By: Karl Jaro user 06 Feb 2017 at 6:03 p.m. CST

12 Responses
Karl Jaro gravatar
Hello Gluu, I tried follow [this documentation](https://gluu.org/docs/admin-guide/saml/#saml-Attributes) and replaced 'customTest' with 'googleID' I tested it using the one you gave: ``` [root@sso ~]# /opt/symas/bin/slaptest -f /opt/symas/etc/openldap/slapd.conf -F /opt/symas/etc/openldap/slapd.d **config file testing succeeded** ``` when I tried starting solserver I got this error message: ``` [root@sso ~]# systemctl status solserver.service -l ● solserver.service - LSB: Symas OpenLDAP Loaded: loaded (/etc/rc.d/init.d/solserver; bad; vendor preset: disabled) Active: failed (Result: exit-code) since Tue 2017-02-07 00:03:03 UTC; 7s ago Docs: man:systemd-sysv-generator(8) Process: 2625 ExecStop=/etc/rc.d/init.d/solserver stop (code=exited, status=0/SUCCESS) Process: 2886 ExecStart=/etc/rc.d/init.d/solserver start (code=exited, status=1/FAILURE) Feb 07 00:03:03 sso.dialanote.com systemd[1]: Starting LSB: Symas OpenLDAP... Feb 07 00:03:03 sso.dialanote.com slapd[2896]: @(#) $OpenLDAP: slapd 2.4.44 (Oct 28 2016 16:22:23) $ root@NY1SCOLRH6BLD01:/home/build/sold-2.4.44.20161019/build/openldap.x86_64/servers/slapd Feb 07 00:03:03 sso.dialanote.com slapd[2896]: ldif_read_file: Permission denied for "/opt/symas/etc/openldap/slapd.d/cn=config.ldif" Feb 07 00:03:03 sso.dialanote.com slapd[2896]: DIGEST-MD5 common mech free Feb 07 00:03:03 sso.dialanote.com solserver[2886]: Symas OpenLDAP LDAP services slapd starting[FAILED] Feb 07 00:03:03 sso.dialanote.com systemd[1]: solserver.service: control process exited, code=exited status=1 Feb 07 00:03:03 sso.dialanote.com systemd[1]: Failed to start LSB: Symas OpenLDAP. Feb 07 00:03:03 sso.dialanote.com systemd[1]: Unit solserver.service entered failed state. Feb 07 00:03:03 sso.dialanote.com systemd[1]: solserver.service failed. ```
CentOS72
closed

Answers

By Karl Jaro user 06 Feb 2017 at 6:16 p.m. CST

Copy
Karl Jaro gravatar
I tried using the ff: chown ldap. /opt/symas/etc/openldap/slapd.d - did not work chmod 777 /opt/symas/etc/openldap/slapd.d - did not work chown ldap. /opt/symas/etc/openldap/slapd.d/cn=config.ldif - did not work chmod 777 /opt/symas/etc/openldap/slapd.d/cn=config.ldif - did not work

By Michael Schwartz Account Admin 06 Feb 2017 at 7:17 p.m. CST

Copy
Michael Schwartz gravatar
can you post the schema file here...

By Karl Jaro user 06 Feb 2017 at 7:21 p.m. CST

Copy
Karl Jaro gravatar
``` attributetype ( oxAttribute:1001 NAME 'myCustomAttr1' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'Gluu - dynamic registration custom attribute' ) attributetype ( oxAttribute:1002 NAME 'myCustomAttr2' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'Gluu - dynamic registration custom attribute' ) attributetype ( oxAttribute:1003 NAME 'googleID' SUBSTR caseIgnoreSubstringsMatch EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'Gluu - custom person attribute' ) objectclass ( oxObjectClass:101 NAME 'gluuCustomPerson' SUP ( top ) AUXILIARY MAY ( googleID ) X-ORIGIN 'Gluu - Custom persom objectclass' ) objectclass ( oxObjectClass:102 NAME 'oxAuthClientCustomAttributes' SUP ( top ) AUXILIARY MAY ( myCustomAttr1 $ myCustomAttr2 ) X-ORIGIN 'Gluu - Custom client objectclass' ) ```

By Michael Schwartz Account Admin 06 Feb 2017 at 7:51 p.m. CST

Copy
Michael Schwartz gravatar
Ok thanks. We'll take a look.

By Karl Jaro user 06 Feb 2017 at 8:41 p.m. CST

Copy
Karl Jaro gravatar
Thank you!

By Joseph Christie user 06 Feb 2017 at 11:16 p.m. CST

Copy
Joseph Christie gravatar
Hi Karl, This issue is related to OS, in particular its related to systemctl. In the very line of the logs you sent, it shows that: Loaded: loaded (/etc/rc.d/init.d/solserver; bad; vendor preset: disabled) Try using below command and let us know. docker run --name slapd -p 389:389 -d dcm4che/slapd-dcm4chee

By Karl Jaro user 07 Feb 2017 at 3:02 p.m. CST

Copy
Karl Jaro gravatar
Hello Joseph, I just used the setup.py script, and I don't have docker. Should I run it inside the container? If so, I should install Docker, right? I'm using chroot btw. solserver only fails when I create a custom configuration holder ``` mkdir -p /opt/symas/etc/openldap/slapd.d ``` , I was able to run it on fresh install and configuration of custom.schema. ![](http://i.imgur.com/r5GSirU.png "enter image title here") Thanks in advance.

By Joseph Christie user 08 Feb 2017 at 1 a.m. CST

Copy
Joseph Christie gravatar
Hi Karl, Thanks for the input, no docker is not required inchroot. I tried to reproduce the issue, but I wasn't able to reproduce. I was able to add custom attributes successfully and started openldap too. Will test again and revert back.

By Joseph Christie user 08 Feb 2017 at 3:41 a.m. CST

Copy
Joseph Christie gravatar
Hi Karl, I was able to replicate the issue in Centos. Will get back once with a solution as soon as possible.

By Karl Jaro user 08 Feb 2017 at 3:16 p.m. CST

Copy
Karl Jaro gravatar
Thanks, Joseph. Appreciate all the help.

By Joseph Christie user 15 Feb 2017 at 10:54 p.m. CST

Copy
Joseph Christie gravatar
Hey Karl, Issue has been raised to resolve this issue a Bug. https://github.com/GluuFederation/oxTrust/issues/483

By Yuriy Movchan staff 16 Feb 2017 at 10:17 a.m. CST

Copy
Yuriy Movchan gravatar
Hi, In CE 3.0.0 we not uses **/opt/symas/etc/openldap/slapd.d** But there are steps which allows to re-generate **/opt/symas/etc/openldap/slapd.d**: - backup /opt/symas/etc/openldap/slapd.d - remove /opt/symas/etc/openldap/slapd.d - create empty dir /opt/symas/etc/openldap/slapd.d - /opt/symas/bin/slaptest -f /opt/symas/etc/openldap/slapd.conf -F /opt/symas/etc/openldap/slapd.d

Post an answer