Ask Your Question
0

Tenant addition giving problems over OpenLDAP

asked 2012-03-01 09:50:35 -0500

srirangamn gravatar image

Hi,

I have installed OpenLDAP and Keystone on Ubuntu 11.04 successfully.

When I am trying to add tenant using keystone-manage tenant add Tenant1, I am getting below error: passlib.registry: INFO registered crypt handler 'sha512_crypt': <class 'passlib.handlers.sha2_crypt.sha512_crypt'=""> sqlalchemy.engine.base.Engine: INFO PRAGMA table_info("credentials") sqlalchemy.engine.base.Engine: INFO () sqlalchemy.engine.base.Engine: INFO PRAGMA table_info("token") sqlalchemy.engine.base.Engine: INFO () sqlalchemy.engine.base.Engine: INFO PRAGMA table_info("services") sqlalchemy.engine.base.Engine: INFO () sqlalchemy.engine.base.Engine: INFO PRAGMA table_info("endpoint_templates") sqlalchemy.engine.base.Engine: INFO () sqlalchemy.engine.base.Engine: INFO PRAGMA table_info("endpoints") sqlalchemy.engine.base.Engine: INFO () ERROR: {'info': 'objectClass: value #1 invalid per syntax', 'desc': 'Invalid syntax'} root : ERROR {'info': 'objectClass: value #1 invalid per syntax', 'desc': 'Invalid syntax'} Traceback (most recent call last): File "./keystone-manage", line 16, in <module> keystone.manage.main() File "/root/keystone/keystone/manage/__init__.py", line 284, in main raise exc ldap.INVALID_SYNTAX: {'info': 'objectClass: value #1 invalid per syntax', 'desc': 'Invalid syntax'}

I cross checked the configurations and they seem good.

Please help me on this.

Regards, Nag.

edit retag flag offensive close merge delete

3 answers

Sort by ยป oldest newest most voted
0

answered 2012-03-06 17:34:35 -0500

heckj gravatar image

Nag -

You're using an older version of Keystone (likely from the Essex-3 milestone or before). We've dramatically changed the code since then, and I recommend you update your code to the latest (essex-4 milestone) release. We've just added back in an LDAP back-end, but don't have the documentation up for configuring it at this time. Adam Young has been driving an initial implementation, and he might have some specific suggestions for how to get it basically up and running for you.

edit flag offensive delete link more
0

answered 2012-03-07 16:55:12 -0500

The fact that there is SQL Alchemy lines in your stack trace indicate that you are not talking to LDAP.

In order to add a user to LDAP, you need to use the HTTP API, and cannot do it via Keystone Manage.

edit flag offensive delete link more
0

answered 2012-03-13 06:25:50 -0500

srirangamn gravatar image

Hi,

I did not do any code changes. I installed OpenLDAP and keystone and followed the steps in nova.sh script.

Sometimes, it is working fine and sometimes not.

I did a clean and installed them again. Now it is working fine.

Thanks for the help.

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2012-03-01 09:50:35 -0500

Seen: 54 times

Last updated: Mar 13 '12