apigee-openldap start fails with error "pwdMaxRecordedFailure". Error code 17: attribute type undefined

Hi Apigeeks,

We are on OPDK version 14.17.01.05. We have recently had an OS patch update which updated the OpenLDAP version from 2.4.40 to 2.4.44. Since then we are not able to start apigee-openldap component.

When I checked in the error logs this is what I found:

59c58e1a index sn 0x0716
59c58e1a index givenName 0x0716
59c58e1a index memberUid 0x0716
59c58e1a index nisMapName 0x0716
59c58e1a index nisMapEntry 0x0716
59c58e1a index roleOccupant 0x0004
59c58e1a User Schema load failed for attribute "pwdMaxRecordedFailure". Error code 17: attribute type undefined
59c58e1a config error processing olcOverlay={0}ppolicy,olcDatabase={2}bdb,cn=config: User Schema load failed for attribute "pwdMaxRecordedFailure". Error code 17: attribute type undefined
59c58e1a slapd stopped.
59c58e1a connections_destroy: nothing to destroy.



I checked on the community that this is a problem faced by others and still not resolved.

We cannot downgrade the LDAP version as this is being used by systemd service.

Is the OpenLDAP version 2.4.44 not supported by Apigee? Can we expect this to be resolved in future builds?

Thanks...

0 4 1,294
4 REPLIES 4

Our Engineering team is aware of the issue and is working on corrective action. I suggest you open a support ticket as well please related to this issue.

Not applicable

Have you resolved that issue?

Hi @Marat Salimzianov. this is still not resolved.

Not applicable

Hi - I ran into the same issue while working on a install of Edge 16.09 this morning.

Here are the steps to downgrade to OpenLdap 4.4.40 from 4.4.44:

Commands to unistall OpenLDAP 2.4.44

yum remove openldap-servers-2.4.44-5.el7.x86_64

yum remove openldap-clients-2.4.44-5.el7.x86_64

Next - Downgrade and install OpenLDAP 2.4.40

yum downgrade openldap-2.4.40

yum install openldap-servers-2.4.40

yum install openldap-clients-2.4.40

Check what version are you running:

rpm -qa | grep openldap