Hallo,
am Master LDAP Einfach folgendes Schema hinzufügen (dick markiert):
[quote]include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/inetorgperson.schema
include /usr/share/univention-ldap/schema/samba.schema
include /usr/share/univention-ldap/schema/mail.schema
include /usr/share/univention-ldap/schema/user.schema
include /usr/share/univention-ldap/schema/directory.schema
include /usr/share/univention-ldap/schema/policy.schema
include /usr/share/univention-ldap/schema/dnszone.schema
include /usr/share/univention-ldap/schema/univention.schema
include /usr/share/univention-ldap/schema/lock.schema
include /usr/share/univention-ldap/schema/custom-attribute.schema
include /usr/share/univention-ldap/schema/krb5-kdc.schema
include /usr/share/univention-ldap/schema/dhcp.schema
include /usr/share/univention-ldap/schema/univention-dhcp.schema
include /usr/share/univention-ldap/schema/univention-default.schema
include /usr/share/univention-ldap/schema/license.schema
include /usr/share/univention-ldap/schema/share.schema
include /usr/share/univention-ldap/schema/printer.schema
include /usr/share/univention-ldap/schema/automount.schema
include /usr/share/univention-ldap/schema/network.schema
include /usr/share/univention-ldap/schema/solaris.schema
include /usr/share/univention-ldap/schema/courier.schema
include /usr/share/univention-ldap/schema/scalix.schema
include /usr/share/univention-ldap/schema/univention-scalix.schema
include /usr/share/univention-ldap/schema/univention-syntax.schema
include /usr/share/univention-ldap/schema/admin-settings.schema
include /usr/share/univention-ldap/schema/template.schema
include /usr/share/univention-ldap/schema/univention-ldap-acl.schema
include /usr/share/univention-ldap/schema/nagios.schema
include /usr/share/univention-ldap/schema/univention-directory.schema
include /usr/share/univention-ldap/schema/univention-objecttype.schema
include /usr/share/univention-ldap/schema/msgpo.schema
include /etc/ldap/schema/ppolicy.schema
include /usr/share/univention-ldap/schema/univention-virtual-machine-manager.schema
include /usr/share/zarafa4ucs-schema/zarafa4ucs.schema[/quote]
Dann startet der LDAP nicht mehr, da er meint, dass im ppolicy Schema etwas an der falschen Stelle ist (slaptest). UCS3.0.2 ist installiert.
Habe nun die “include” Reihenfolge des Masters am Slave kopiert, nun läufts, aber keine Dauerlösung :).
PS: Wäre es vl möglich, das ppolicy zukünftig zu implementieren, um sagen zu können, dass zB. nach 10 Fehllogins gegen das LDAP der Account für zB. 30 Minuten gesperrt wird???
lG