Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Not A Problem
-
2.0.0-M9
-
None
-
None
-
Linux 64bit
OpenJDK Runtime Environment (IcedTea6 1.8.13) (6b18-1.8.13-0+squeeze2)
Description
Creating an ou with administrativeRole set works and replicates on the Slave nodes. Modifying the administrativeRole to accessControlSpecificArea for example on an existing ou throws an Exception:
[13:04:07] ERROR [org.apache.directory.server.core.schema.SchemaInterceptor] - ERR_54 Cannot add a value which is already present : organizationalUnit
[13:04:07] ERROR [org.apache.directory.server.ldap.replication.consumer.ReplicationConsumerImpl] - ERR_54 Cannot add a value which is already present : organizationalUnit
org.apache.directory.api.ldap.model.exception.LdapAttributeInUseException: ERR_54 Cannot add a value which is already present : organizationalUnit
at org.apache.directory.server.core.schema.SchemaInterceptor.checkModifyEntry(SchemaInterceptor.java:739)
at org.apache.directory.server.core.schema.SchemaInterceptor.modify(SchemaInterceptor.java:1184)
at org.apache.directory.server.core.api.interceptor.BaseInterceptor.next(BaseInterceptor.java:577)
More or less the same things happens with accessControlSubentries. Creating an entry is working and replicating, but modifying the prescriptiveACI throws an exception:
[13:10:58] ERROR [org.apache.directory.server.core.schema.SchemaInterceptor] - ERR_52 Cannot modify the attribute : ATTRIBUTE_TYPE ( 1.3.6.1.4.1.18060.0.4.1.2.11
NAME 'accessControlSubentries'
DESC Used to track a subentry associated with access control areas
EQUALITY distinguishedNameMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
NO-USER-MODIFICATION
USAGE directoryOperation
)
at org.apache.directory.server.core.schema.SchemaInterceptor.checkModifyEntry(SchemaInterceptor.java:716)
at org.apache.directory.server.core.schema.SchemaInterceptor.modify(SchemaInterceptor.java:1184)
at org.apache.directory.server.core.api.interceptor.BaseInterceptor.next(BaseInterceptor.java:577)