我找到了一些操作方法,但它们基于两个库的旧版本(并且包含似乎已从 OpenAM/OpenSSO 中删除的文件的引用) - 例如:
http://blogs.oracle.com/indira/entry/using_opends_as_user_store
我尝试导入旧版本的 am_remote_opends_schema.ldif,但出现了相当详细的错误:
ldap_modify: Invalid syntax (21)
additional info: An error occurred while attempting to decode the object class "( 2.16.840.1.113730.3.2.181 NAME 'iplanet-am-managed-filtered-group' DESC 'Managed Filter Group OC' SUP iplanet-am-managed-group X-ORIGIN 'OpenSSO' )": The definition for objectclass 2.16.840.1.113730.3.2.181 is invalid because it has an objectclass type of STRUCTURAL but this is incompatible with the objectclass type AUXILIARY for the superior class iplanet-am-managed-group
我是否应该将 OpenAM 和 OpenDJ 版本回滚到这些操作指南中引用的旧版本的 OpenSSO 和 OpenDS?这似乎是一种不太令人满意的方法,但如果它能解决问题……
答案1
迈克尔,
OpenAM 为 OpenDJ(或 OpenDS)提供了必要的文件,但您也可以在 OpenAM 源存储库中找到它们:http://sources.forgerock.org/browse/openam/trunk/opensso/products/amserver/war/ldif/opends
OpenSSO 的文档仍然适用于 OpenAM,就像 s/opensso/openam/ 适用于 OpenDJ 和 OpenDS 一样。文档:http://wikis.sun.com/display/OpenSSO/Using+OpenDS+as+a+User+Data+Store+for+OpenSSO+Enterprise+8.0+Update+1
我希望这能有所帮助。Ludo