This topic has 2 replies, 2 voices, and was last updated 4 years, 10 months ago by sixart.

  • Author
    Posts
  • #15575
     sixart
    Participant

    Hi,

    I create attribute lastlogintime and set it in password policy (as write in the admin guide).
    I create this attribute in all three server with opendj.

    In two of this server I see this error in access log:
    BIND conn=11272 op=0 msgID=1 version=3 type=SIMPLE dn="uid=usersearch,dc=identity,dc=sieltecloud,dc=it" result=65 message="An error occurred while attempting to update password policy state information for user uid=usersearch,dc=identity,dc=sieltecloud,dc=it: Entry uid=usersearch,dc=identity,dc=sieltecloud,dc=it cannot be modified because the resulting entry would have violated the server schema: Entry uid=usersearch,dc=identity,dc=sieltecloud,dc=it violates the Directory Server schema configuration because it includes attribute lastlogintime which is not allowed by any of the objectclasses defined in that entry" etime=1

    Where is the problem??
    Regards,
    Dario

    #15580
     Ludo
    Moderator

    “Entry uid=usersearch,dc=identity,dc=sieltecloud,dc=it violates the Directory Server schema configuration because it includes attribute lastlogintime which is not allowed by any of the objectclasses defined in that entry”

    The error message is explicit, isn’t it ?
    It is not enough to create an attribute in the schema, you must allow it in objectClasses, or define it as operational so it can appear in any object.
    By the way all of the documentation examples are tested and known to work. So if they don’t, I would suggest two things : check that the documentation matches the version of the server you are using. There are few changes between versions, but you never know. And check that you have actually used the full example of the guide, and not some partial copy.

    #15584
     sixart
    Participant

    I Ludo,

    I use OpenDJ 3.0.1 and I see OpenDJ 3 Admin Giude.

    When I add lastLoginTime attribute it work fine, but now it not work and see that error.
    But I’m not understanding why.

    The attribute is like write in the guide and insert it in the password policy :(

    Dario

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

©2021 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?