Univention Bugzilla – Bug 56729
Openldap 2.5.13+dfsg-5 provides new ppolicy schema attributes that need to be replicated to joined 5.0/5.1 systems
Last modified: 2023-10-18 16:20:30 CEST
The Openldap version used in 5.2 integrated the ppolicy schema. While doing that, they also added some new attributes. While those new attributes don't need to be replicated to joined 5.2, because they are built in there, the attributes need to be replicated to joined/joining 5.0/5.1 machines, because the schema doesn't exist there. They are currently not replicated, because we skip them in oid_skip.txt in the listener. We need to remove them from this list and readd them in 5.2. We already added logic in 5.2 to remove the attributes again during the upgrade. The attributes are: pwdMinDelay pwdMaxDelay pwdMaxIdle pwdMaxLength pwdMaxRecordedFailure pwdCheckModuleArg
29ffe0d8c2 Bug #56729: Don't skip the new ppolicy attributes from 5.2, to be able to join to it. We removed the new attributes from the exclusion list. They are excluded again during/after upgrade to 5.2, so the upgrade works still. Package: univention-directory-replication Version: 13.0.7-2 Branch: ucs_5.0-0 Scope: errata5.0-5
Verified: * Package update * Join tested
<https://errata.software-univention.de/#/?erratum=5.0x848>