As I sat in the airport in Johannesburg, South Africa last night, I wrote the posts for Day 3 and Day 4, and worked on Day 5.
Right now I’m sitting at Heathrow Airport chatting with Joanne and posting the blog posts I wrote. Unfortunately WordPress puts them out of order, with Day 4 appearing at the top.
So, before you read Day 4, or Day 3, jump down to Day 1 & 2 which was also just posted, and read that first, then work your way up.
Enjoy!
This morning I had the great pleasure of meeting Sandi’s wonderful husband Wayne. Wayne had been out of town working on a hydro electric dam in a different part of the country. He came back Thursday afternoon, and was present at the service last night when I was anointed by the Holy Spirit. It was nice catching up with him and Sandi and getting to see how the spirit is moving in both of them. They truly are a wonderful couple with a wonderful family.
This morning’s first session was by Pastor Taz and it was about power. Not about the power you get from an electric socket, but the power you get from the word of God. Yesterday Pastor Bonnie, in the morning, had gone over the covering of authority under God and the church, and Pastor Taz was tying into this directly.
As an individual we are covered by the spirit of God, but that is it. So any attacks that we come under we are only covered by the spirit of God. If our spirit is week, if we give into the flesh, then we were more open to falling. However as we go under the authority of more layers we have more protection. So, if we are part of a family, we are under the authority of that family. That family is then under the authority of a small group, or cell group in a church. The small group is under the authority of the church pastor, and then that church pastor is under the authority of the mission, or church. See, when we cover ourselves and submit to this authority, we are empowered to do great things.
The spirit you serve is the spirit that has power over you.
Along with being the year of multiplication, this is also the year that Pastor Tom celebrates 30 years in ministry in the nation of Zimbabwe. So, tonight was all about celebrating those 30 years. The one thing that truly impacted me about tonight, and really about the entire week as I reflect on this, is the honor that is given to Pastor Tom and Pastor Bonnie, and to all of the pastors.
At first I thought it was just being polite, but I see now that there is a structure at work here, a government that needs to be respected and honored. Whenever Pastor Bonnie or Pastor Tom would enter a room, everyone in the room would stand until they either said sit down or they sat down themselves. When either of them would come on stage, someone would bring their Bibles to the altar.
And so it was tonight, when the pastors were on stage to pay tribute to Pastor Tom, they all kneeled before him. Even when his children came out to pay tribute to him, they knelt in respect and honor. See, Pastor Tom is a true apostle of God, and as such he deserves the honor and respect of everyone.
This is something that has been lost in America. We do not know how to honor the pastors that teach us, we do not know how to respect each other, and we do not know how to pay respect to those that deserve it. Our children, for the most part, are not taught to respect their elders. They are not taught to open doors for ladies, to pull out chairs for ladies, to say yes sir, no sir, yes ma’am, and no ma’am. They are not taught to be respectful when talking to people in authority or their elders. America needs to find this teaching again and begin to correct where we have gone wrong.
Like I said yesterday, I knew that God had an appointment for me, that He was going to meet me here in Harare this week, and that He did. Well, as a result of that meeting with God, I now have a meeting with Dr. Chima, Drs. Erb, and Pastor Innocent from the church. You see, they want to re-do the church website, but there is more to it than just a website re-design. They want to look at IT and communications in general, and how we can improve them to reach more people with the Kingdom message.
Remember what I said about last night, how God hit me upside the head and told me I was holding back? Well, holding back on my time and talents was one of the things I was doing. Pastor Tom teaches that we are to have dominion wherever we are, that where we work and live is our domain and we are to have dominion over that. Well, one of my domains is Information Technology, so I guess I’ve got my calling.
It wasn’t a very restful night last night. Whether it was the jet lag, the excitement from the night before, or the Holy Spirit working on me, I was up several times tonight. The worst part of it, I was semi confused about the time. I checked my cell phone several times to see what time it was, only to worry that I was looking at the time in Dallas. I guess I was worried about not waking up on time or something. Needless to say, it caused some serious confusion and didn’t help me get a good night sleep.
I did finally wake up at 5:30 am, rolled out of bed and did my daily Bible reading. 5 chapters down and some prayer, what better way to start the day. A quick soak in the shower and it was time to go inquire about breakfast.
Sandi had run the girls to school, so I waited on her. When she arrived back at the house, she had Taurai cook up some eggs for me, and Sandi and I sat down to breakfast.
Sandi and her husband Wayne have lived interesting lives. Sandi grew up in Uganda and moved to Zim when she was younger. Her and Wayne have lived in Zimbabwe thru the farm invasions, and witnessed some horrific things. They’ve put up with food shortages, fuel shortages, and still put up with a national infrastructure that still sees regular power outages and telephone outages. They’ve adjusted their lives to this and deal with it. The water system is virtually non-existent, so they have to store water in a large tank on the property and pump it to the house. This means that when the power goes out, they loose their cold water.
Americans have it easy. We complain if the power is out for more than 30 minutes, we worry about losing all of our food in the refrigerator if the power goes out. Yet here is a nation of people that have to deal with regular outages that can last up to, and probably exceeding, 15 hours at a time. Americans need to wake up and realize we are a pampered and spoiled society, a secular society that has abandoned God at the core and a society that needs to wake up.
The itinerary for my morning was changed. Normally my drivers would pick me up at 8:30 am and we’d be off to the centre. Today, however, since I missed my trip thru Mbare yesterday, they were picking me up at 8 am. Apparently someone at Celebration really wanted me to see the slums of Mbare.
To say the area was poor and in bad disrepair is an understatement. The area is what is called a high density area. It apparently started out as housing dormitories for the migrant male workers that would come in from the outer areas of the country to work in the industrial factories nearby. What happened is that the workers began to bring their girlfriends and wives into the dormitories, some living 7 or more people to a single room.
The buildings were designed with no bathroom in the room, instead there was a centrally located communal bathroom on each floor. The waste system was never designed for this many people, and so now the waste has overflowed the pipes, most of the pipes are rotted out, and the human waste is flowing freely down the outside walls. The outside walls where the bathrooms are, are dark black with mold and human waste. Truly appalling living conditions.
The streets are lined with puddles that are contaminated with human waste. The lots and yards around the buildings are littered with trash. But even more disturbing are the hundreds of children that are running around these lots, in the mud, barefoot. It is simply heart breaking to see this.
The bright spot about Mbare is that several famous people have pulled themselves out of these conditions. Authors, singers, business people, and so on. Just like those that have pulled themselves out of areas like Harlem and Chicago’s towers, these people have seen more in themselves, have believed in a dream and have gone and made it real. Kingdom living is building those dreams and following them. Without a vision, you’ll go nowhere.
If you want a tree to be stable, and to last many years, then you need to make sure the root system is very deep and stable. The same is true about people in the church, about the apostles and evangelists of the church. The 1st sign of an apostle, as explained by Dr. Chima, is one that grows his/her roots deep.
Growing in the word, getting strength from God’s word daily, helps the apostle, and the man of God, to grow deep roots and to remain fruitful. When we are fruitful we multiply. The word of the year for Celebration Church is Multiplication. This is the year to multiply the Kingdom.
As with any tree, we must be pruned by the word of God on occasion to keep us fruitful. Whenever we obey the word of God, we are pruned. Pruning helps us to grow wide and strong. However whenever we do not obey the word of God, when we are not in fellowship with God, when we are not in right thinking, peace, and joy in the Holy Spirit, we are cut out.
Praise and Worship tonight were off the hook! What a wonderful way to start the evening session, with some amazing worship. You could feel the Holy Spirit flowing thru the room like a rushing wind. The songs we sung, the energy level, and the anointing of the Holy Spirit made for a heavenly time.
Pastor Tom gave an amazingly inspired word from God tonight. He spoke on Ecclesiastes 9:11, specifically on time and chance. Pastor Tom shared with us how time and chance are moving towards us, not away from us. What an insight! Most of us view time as slipping away from us, as if we were floating down a river.
Since time is moving towards us, that means that opportunities are moving toward us as well. However, we need to be careful not to fixate on one opportunity, but keep our eyes and minds open to all opportunities that are floating our way. By praying in the spirit, and asking for God’s help, we can see all opportunities that are floating towards us. We have to learn to not let our circumstances rule us.
We conceive whatever it is we perceive. If we perceive prosperity, we will conceive it. Our opportunities for prosperity come from God, not from man, and so we need to continually be in the spirit with God. This revelation, this word, was simply amazing. Pastor Tom hit the nail on the head and helped put some things into perspective for me with this message.
I serve an amazing God. I came to Zimbabwe knowing that I had a divine appointment with God, but not knowing fully when that appointment would happen, or what would come out of it. Well, I think that I had one of my appointments tonight. God has a way of getting my attention by hitting me with a spiritual 2 x 4.
It came after Pastor Tom’s message while we were having more worship. The spirit had truly entered the sanctuary, and it could be felt by everyone. We were all singing, dancing, jumping up and down, swinging our jackets around, waving flags, just having a great time worshipping God. You could see that God was working on lots of people, and that’s when he began to break my heart and tear me down.
The scriptures tell us that God molds us like clay, and that when He isn’t happy with us he will break us down and start over. Well, He didn’t necessarily start completely over, but he sure did break off a piece and start over with that. God illuminated in my heart how I had not be giving Him my all, I have been holding back something from him. This was so impactful for me that it brought me to tears, to weeping for God. I needed to repent of this, to ask for His forgiveness, and to agree to give Him everything. I have to learn to hold nothing back, to give Him not only my money, but my time and my talents. Wow, that was difficult.
But what was amazing about that, what was just a true Hand of God moment was when He answered one of my prayers from before the trip. See, I wanted to learn how to pray in the spirit. I wanted to be anointed with that gift. Well, as soon as I had confessed my sin of holding back, I was anointed with the gift of tongues. It was an amazing experience!
When I looked back up to the stage, Pastor Bonnie was down on her knees pointing directly at me and telling me to come to the stage. I had to crawl over 5 or 10 people that were on their knees on the floor praying and worshiping to get there, but I finally did. And when I did, Pastor Bonnie was telling me to do it, to pray in the spirit. She knew what my prayer was. She knew what God had revealed to me just moments before, and she knew that God had anointed me with that gift. Out of the mouth of a prophet!
So I kneeled there, in front of the stage, and prayed in the spirit for what felt like hours. It wasn’t, but it was an amazing experience. One that I will not soon forget. I can feel the Holy Spirit anointing on my life.
Before I get to Day 1 I need to finish a little background. About 4 weeks ago we started attending church on Sundays at our chiropractor’s house, Drs. David & Kimberly Erb. This was a few weeks after my life altering conversation with Pastor Tom. We still go to our home church on Saturday nights, but now we also attend church at the Erb’s. And for those in the DFW area, we are beginning to meet at the Hilton Garden Inn hotel in Lewisville starting Sunday June 7.
Two weeks ago I had a conversation with Dr. Erb, asking him when he would be visiting Zimbabwe again. He proceeded to tell me that he and the entire family would be traveling in two weeks to Zimbabwe for the Action 2009 conference that is held at the church. He also told me how if I left on Monday I could return the following Monday. Of course that got my mind rolling, and so, here we are two weeks later and I am in the waiting area for Flight #80 on American Airlines to London’s Heathrow airport. Can you believe this?
It’s been 15 years since my last airplane trip that took more than 5 hours. That was a trip back stateside from Korea when I left the Army. I don’t remember the trip being so grueling back then, but then again I think I had more room in the seat than I did on the first flight of the trip. And, of course, I was also about 60 lbs lighter than I am today, so that might have something to do with it too.
The first flight was on American Airlines, flight #80 from DFW to London Heathrow. The plane was a 767 and the rows in coach were jammed together, like they are on all of American’s flights now-a-days. To top it off, the flight was full, so any thought of getting more room was out. This was a 9 hour flight, and I think I slept all of about 15 minutes on the flight.
We landed in London around 12:15 pm on Tuesday the 26th and headed straight thru customs. Once thru customs, Pastor Joy from the London church met us and helped us get our bags stowed so we could go on an outing in the city. We hopped the express train to Paddington Station and started our journey. A taxi cab ride over to Whole Foods in the Wellington area for lunch, and then a double decker bus ride to Buckingham Palace. After a quick stroll and lots of photos, we hopped another set of taxis back to Paddington Station to catch the express back to Heathrow.
I must say, the taxi cab rides were interesting, as was the trip on the double decker bus. I’m glad I was able to experience a little bit of London, and I’m sure that someday my wife and I will come back thru and stay for a little longer.
Now, we were flying Virgin Atlantic from Heathrow to Johannesburg, South Africa and we had to check in. We hoofed it over to the ticketing counters, and I have to say the customer service at Virgin is out of this world. When we walked thru the doors we were immediately greeted by at least 4 different ladies all dressed in their signature Virgin red dreses/skirts (I’m no fashion expert). They were more than happy to point us to the correct counter and get us on our way.
Now, we had about an hour and a half before our flight, so we strolled thru security and grabbed a seat near a message board to see what gate our flight was at. With about 45 minutes to our flight, we had a gate number but decided we would sit for another 15 minutes before leaving the area. Well, I started to go to the gate to make sure our baggage was transferred. Little did we know that the gate we were going to was about a mile away from where we were. Okay, maybe not a mile, but it sure felt like it. So I hurried back to where the Erbs were and we gathered our things and practically ran to the gate. By the time we got there, with 30 minutes until flight time, they were getting ready to close the plane. Wow, talk about on time.
Fortunately, when we got on the plane it was practically empty. As it turned out we all had our own row of 4 seats for this 12 hour flight. Not to mention the accommodations were incredible! They had plenty of flight attendants, cabin crew in Virgin parlance, the seats all had personal entertainment systems with over 50 different movies to choose from, and the bathroom was larger than any airplane bathroom I have ever been in. I could actually go to the bathroom and not feel crowded. Alas, even with an entire row to myself, I still only managed about 2 hours of sleep.
After this flight on Virgin Atlantic, I’m going to have a difficult time flying any other airline. The next time I travel, even from DFW to Los Angeles, I’m going to be looking for a Virgin flight instead of American or any other airline. My luck, since I haven’t checked yet, Virgin probably doesn’t fly from DFW at all.
My first impression of Johannesburg after stepping of the plane was one of Saudi Arabia. The airport terminal was spotless, and empty. The floors were polished marble, and very ornate. The entire airport had an air of opulence about it. I say it reminded me of Saudi Arabia, because the buildings I was able to go into in Saudi were similar in design and decoration.
We made it thru customs into the international departure area, only to find a mini shopping mall inside. Think the shoppes at Caesar’s Palace, for those that have been to Vegas. We did some browsing and grabbed a very quick burger at a restaurant before running to the gate. A quick shuttle bus trip to the plane, up the stairs, into our seats, and we were on our way.
The flight was packed. It was a 737 just like Southwest flies. It never ceases to amaze me that people are the same everywhere when it comes to loading an airplane and their baggage. They see the bins shut, see that there is no room, yet they keep on coming back with their luggage. Amazing. Anyway, it was a short 1 hour and 15 minute flight, I think, before we were in Harare.
When we made it to the customs desk in Harare, we were met by Snicks, one of the members at Celebration Centre. She walked us over to the baggage claim and helped us get our luggage. Five luggage carts later and we were out the door.
As we were walking towards the outer door, we were met by several young men in suits from the church. I didn’t realize it, but these were our drivers and others there to help. Yep, you heard me right, we were assigned drivers for our entire stay here in Harare. Amazing! I had two drivers assigned to me, not sure why, but it was a pleasure. They walked me out to the car, took my luggage from me, opened my car door and had me sit in the back. Waiting for me in the seat was a care package of food, and some CDs and a book, along with an itinerary for the week and other material. I was absolutely blown away.
As we left the airport, my drivers and I introduced ourselves and got to know each other. Zivi was the primary driver, while Upenyu was the secondary and the actual driver of the car. They took me from the airport to Celebration Centre, opening my door for me when we got there. They would not let me carry my bags, made me walk in front of them, opened the doors for me, the whole royal treatment. It was a little strange for me, and I tried several times to do things myself, but I realized that they were simply being servants and I had to allow that to happen. They were called to be servants to me, and that me trying to do things myself would be an insult to them, and it would steal their blessing. They were simply sowing into the Kingdom by serving me. Little did they know how much of a blessing they were being to me.
After a quick bite to eat, I was given an even quicker tour of the centre, and then whisked off to my host home to take a quick shower and change into more presentable clothing.
The host home I will be staying at this week, is that of Pastors Wayne and Sandi Roberts. Absolutely wonderful people. I met Sandi for a brief few moments at the church before I was whisked off to get changed. I met their oldest daughter, who had the most perfect manners. I had assumed I would have a room in their house, and that I’d have to share a bathroom. Oh no, I had an entire guest suite to myself. Sitting room, kitchen, bathroom, and a queen size bed. Boy, was I going to be spoiled by them.
I think it took me all of 45 minutes to shave, shower, and change into slacks and a jacket. I’m not much of a jacket person, so having to wear a sport coat all week might be a bit much.
When I arrived back at Celebration Centre, I met up with the Erbs in the Dueschele Suite, which is a VIP lounge of sorts, and will be my home for the next few days. While waiting to go into the next session, we were waited on by such wonderful ladies from the church. They would not let us serve ourselves water or anything else. They waited on us like kings. Again, they were sowing into the Kingdom, helping them, and us, to stay in the Kingdom, which is right thinking, peace, and joy in the Holy Spirit (Romans 14:17).
While waiting to go into the next session, Pastor Taz came thru the suite and Dr. Kimberly asked him to sit with us and talk. He had some amazing words to speak, but the most impactful words had to do with waiting on the Lord.
He said to me, “God works best with a moving vehicle, not with one that is stationary.” Wow! Basically what he was telling me was to not sit on the sidelines waiting for God to call me into the game, but to get involved somehow, serving in some fashion, and God will then help to direct that effort. Hmmm….You see, it is easier to steer a vehicle that is moving than one that is not moving. Very insightful and impactful.
Americans try to praise and worship our God, but we don’t manage to get it done. In the evening, before the evening service, there was a time of worship and of prayer. Several pastors from the church were up on stage praying in the spirit. This is done before every service to ward off any evil spirit that may be around. It is a very impressive sight to see these men of God walking the stage, praying in tongues to sanctify the podium.
At the same time, the choir and praise leaders are leading worship. Let me tell you, no church that I have ever been to in America knows how to praise God like the church at Celebration Ministries. Wow! The songs were great, but more than anything, the spirit was moving every time we sang. People were dancing, waving their hands, shouting, and giving their all for God. God is blessed when we praise Him.
The book of Psalms tells us that God is glorified when we praise him:
Psalm 50:23 – Whoever offers praise glorifies Me (NKJV)
We should praise Him with joy:
Psalm 63:5 – And my mouth shall praise You with joyful lips. (NKJV)
The American church needs to learn how to praise God!
The service that Pastor Tom preached tonight was awesome. He spoke on Daniel chapters 3 and 7, and used references in 2 Thessalonians 2:3 Pastor Tom did a wonderful job explaining how the statue of chapter 3 and the 4 beasts of chapter 7 can really be seen as the same things – indicative of the empires that followed the Babylonian empire, including the Old and New Roman Empire. The part of this service that really got me was his explanation that the New Roman Empire may not necessarily be a geographical empire, but a political or cultural empire. Powerful stuff!
See, the traditional viewpoint has been that the feet and toes of the statue in chapter 3 refer to the 10 nations that will make up the New Roman Empire. Many have speculated this to be the European Union, or that at least the nations are there. However, if we take the viewpoint that Pastor Tom has laid out, the New Roman Empire could be anywhere, and may not be restricted to the European continent. Another very impactful piece of information! See, the Roman Empire is really not dead. It lives in the form of Roman Law. Roman Law is at the heart of many nations, especially the United States. E Pluribus Unum.
One of the things that stuck out the most tonight was his description of society as a hyphenated people. This is really true in America, where people no longer identify themselves as American. They identify themselves as African-American, or Indian-American, or Italian-American, or…the list goes on. When did we stop identifying ourselves as Americans? When did it become bad to be known simply as an American?
After dinner at the centre, my drivers took me back to the Roberts’ home to get some sleep. Not only did I have a separate room, I had a separate entrance to the guest suite as well. Wow! Of course, a major shock was the fact that the power was out. Something I will go into detail about in tomorrow’s post.
I sat down this evening, before getting some shut eye, and jotted some quick notes. Not this entire post, of course, but enough notes to help me get something fleshed out and posted.
I am overflowing with peace and joy right now. The Spirit has surely filled me today. If I am this full tonight, I can only imagine what the days to come will bring.
It all started quite unexpectedly. There I was sitting in a hotel lobby talking small talk with Pastor Tom Dueschle of Celebration Ministries International, not thinking this would amount to anything. You know the conversation, “what do you do for a living”, “do you have any children”, small talk. Little did I know the outcome of that conversation would rock my spiritual walk, and change my thoughts on the Great Commission and the salvation message that is preached in the American church.
You see, I have always believed in the American church’s vision that salvation is what we should be reaching the masses with, I had never heard anything else in my 30 years as a Christian. You ask Christ into your heart, you confess your sins, you get baptised, and you share that with everyone else. To borrow from the great Paul Harvey, that wasn’t “the rest of the story”.
Pastor Tom, my wife and I sat in that hotel lobby in Dallas, in April of 2009, and talked for about an hour, and it was the most profound hour I had ever spent with someone. When my wife and I got up to leave, my head was hurting and spinning from the thoughts that were laid before me. It started with a simple question: What do you do for a living. That was it. Nothing else. No philosophical question, no religious question, just what do you do for a living. I answered him, and then I added that I felt God was calling me into ministry, or into missions. Pastor Tom gave one of his sly grins, and then he began to explain to me that going into ministry was not my calling, it might be what I was going to do, my occupation, but it wasn’t my calling. He then explained how a calling on someone’s life is unique to that person. He explained how a calling on one in a marriage was really a calling on both in the marriage. That if I was called to something, my wife was also called to that gift, or item. His calling, you see, is reformation, to reform the church back to what Christ called us to do, to what the church is truly about.
After rocking me with that little bit of information, he then began to talk to me about what came after salvation. I mean, so now you’re saved, you’ve accepted Christ into your life, but isn’t there more to do? He asked me where I thought the Kingdom of God was. Well, that was easy I thought, the Kingdom of God is in heaven. Well, I was right, and I was wrong all in the same breath. Pastor Tom started off by asking me about the Our Father prayer that is found in Matthew. He went on to explain how heaven was the model for the Kingdom of God, but that the Kingdom is really here with us on earth. He went on to quote to me Romans 14:17, which says:
“For the kingdom of God is not eating and drinking, but righteousness and peace and joy in the Holy Spirit” (NKJV)
Could it really be that simple? I mean seriously, you’re telling me that all I have to do is seek peace, joy and right thinking (the translation of the word used for righteousness) and I can live in the Kingdom now?
Pastor Tom went on to talk to me about dominion and how Adam and Eve were called to dominion over the earth, and all the things of the earth. He explained that we are still called to dominion, and called to eat of the tree of life, not the tree of good and evil.
So much was discussed in that one hour. So much that has caused me to embark on my spiritual journey. I have no idea what God has in mind for me, no idea what I will find, no idea how I will be touched. I just know that I have a divine appointment with God in Harare, Zimbabwe and I’m going.
It’s been a few months since I last posted, and during that time one of my fellow co-workers at one of our other locations found an easier way to upgrade to Leopard for us Meeting Maker sufferers. As you recall from Part 1 and Part 2 of this series, in order to upgrade from Tiger to Leopard I was having to strip out all references to Meeting Maker from the LDIF files. Well, there is an easier way, a much, much easier way.
When Meeting Maker was first installed on your server, a custom schema file was added to your LDAP server to allow for the new attributes. Well, all we need to do is get that schema file over to the new server and add a few lines to the slapd.conf configuration file.
First step is to grab that custom file. Fire up Terminal on your existing server and go find that file:
cd /etc/openldap/schema
ls -la
Now, most likely the file is named “meetingmaker.schema”, at least that’s what mine was, but yours may be different. Look for file names that don’t look like standard schema files for OS X. You can easily determine if they are Meeting Maker schema files by listing the file contents:
cat meetingmaker.schema | grep MeetingMaker
That snip of code will help you tell if the file is a Meeting Maker file or not. If nothing is returned, you don’t have the right file and need to keep looking.
Once you find the file, copy it over to your new server:
scp /etc/openldap/schema/meetingmaker.schema user@yourserver:/etc/openldap/schema
Now that the file is over on your new server, we need to edit slapd.conf to let it know what to do. First things first, make a backup copy of that file:
sudo cp /etc/openldap/slapd.conf /etc/openldap/slapd.conf.bak
Now open up slapd.conf in your favorite editor and add this line:
include /etc/openldap/schema/yourcustomschemafile.schema
We need to clear out the slapd.d folder now. Make a backup of this folder first:
cp -R /etc/openldap/slapd.d /etc/openldap/slapd.d.bak
Now clear the contents of the slapd.d folder:
rm -rf /etc/openldap/slapd.d/*
Let’s test to make sure the schema is being picked up right:
slaptest -v -d 68 -f /etc/openldap/slapd.conf -F /etc/openldap/slapd.d
This will return a whole bunch of information, the key pieces being Meeting Maker and the last line: “config file testing succeeded”. Here is what the last lines of my test showed:
line 550 (objectclass ( 1.3.6.1.4.1.16291.2.2.1.1 NAME 'comMeetingMakerUser' DESC 'Meeting Maker, Inc.: Meeting Maker User' SUP comMeetingMakerAccount ))
line 562 (objectclass ( 1.3.6.1.4.1.16291.2.2.1.2 NAME 'comMeetingMakerResource' DESC 'Meeting Maker, Inc.: Meeting Maker reservable resource (non-location)' SUP comMeetingMakerAccount STRUCTURAL MAY ( comMeetingMakerAutoAccept $ comMeetingMakerAllowProposals ) ))
line 574 (objectclass ( 1.3.6.1.4.1.16291.2.2.1.3 NAME 'comMeetingMakerLocation' DESC 'Meeting Maker, Inc.: Meeting Maker reservable meeting location' SUP comMeetingMakerAccount STRUCTURAL MAY ( comMeetingMakerAutoAccept $ comMeetingMakerAllowProposals ) ))
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
send_ldap_result: err=68 matched="" text=""
bdb_db_open: dc=server,dc=yourdomain,dc=com
config file testing succeeded
bash-3.2#
Notice the Meeting Maker references. We should be good to go.
Give your server a quick restart. You can probably skip this part by simply sig hupping the DirectoryService service (killall DirectoryService), but a restart is just cleaner in my opinion.
After the restart, fire up Workgroup Manager and let’s see if the attributes are there now. Click on the Inspector button and then on the drop down list of items:
In the pop-up window, choose OLCSchemaConfig and verify Meeting Maker is now showing up:
If you see it in there, then you are good to go.
Now that you have the schema entries in for Meeting Maker, you can simply do an archive of your OD data on your 10.4 server and then a restore on the new 10.5 server. You will want to make sure your kerberos realm is the same on the new server as it was on the old, or you will run into problems importing the data. If you want to use a new realm, well, then you might as well start typing the data in by hand. I know there are ways to change this in the LDIF file on the fly, similar to the way I stripped the Meeting Maker data out in Part 2, but I haven’t messed around with it yet.
I hope these three articles helped you out with your upgrade.
In my last post, Meeting Maker to Leopard Migration, Part 1, I gave some of the background information regarding the problems I was experiencing with upgrading our Mac OS X Server 10.4 environment to Leopard. Most of the issues revolve around Meeting Maker and the neccessity for extended attributes in Open Directory for Meeting Maker to work. In this post, I will cover the nitty gritty, down and dirty steps I took to get my Open Directory over to a new server running 10.5.
In the last post I mentioned how I was using an article from NetMojo and the stream editor sed to get the users and groups out of the 10.4 Open Directory and into the 10.5 Open Directory. Specifically, the way I did this was to utilize the ldapsearch utility the way that Brent mentioned at NetMojo, but with a twist. This is what Brent had suggested:
ldapsearch -v -x -D 'uid=dirmanager,cn=users,dc=netmojo,dc=ca' -W -b "dc=netmojo,dc=ca" -s sub "(objectclass=apple-user)" > users.ldif
Well, I took it a step further and incorporated sed into the mix. I knew that I had to remove the MM attributes, so why not do it in the stream. Hence the following was born:
ldapsearch -v -x -D "uid=diradmin,cn=users,dc=yourdomain,dc=com" -W -b "dc=yourdomain,dc=com" -s sub "(objectclass=apple-user)" | sed '/comMeetingMakerSignInName/d' | sed '/comMeetingMakerCurrentServer/d' > newldap.ldif
As you can see, I piped the output from ldapsearch thru sed two times to get rid of the two attributes we use. I now had a clean ldif file to work with and could use this to test on 10.5
So now that we have our ldif data, we have to get it into the 10.5 directory. Two hurdles that I was going to have to jump were the Search Base and the Kerberos Realm. You see, you should be naming these two items the same so that your data flows in nice and smooth. However, since I had inherited this installation, I wanted to make it more generic by dropping server names from the Search Base and Kerberos Realm. You see, the default for Open Directory is to create your search base like this:
dc=servername,dc=yourdomain,dc=comAnd your Kerberos realm is like this:
SERVERNAME.YOURDOMAIN.COMAs I stated, I wanted these to be generic so I could move to a different server later, if need be. Well that introduced a little complication to the mix, just meaning I had to force the import into the new OD. We accomplish this with the following:
ldapadd -v -x -D 'uid=diradmin,cn=users,dc=yourdomain,dc=com' -W -f /tmp/new-users.ldif
So, now that I have the data in, I needed to check to make sure it was working. Guess what, all of the users showed up in WGM, and even after a restart they were all still there! Awesome! Now we’re cooking with gas.
Everything was looking groovy, and I really thought I had this beast tackled. Then the monkey wrench dropped in my lap. I started testing authentication to the directory and couldn’t get it to work. Okay, I thought, the password server didn’t move over so it was just a password issue. Wrong. None of the user accounts, except those that were already there, would authenticate. Yep, something was wrong.
I figured out that because the Password Server did not come over, and probably because of some Kerberos issues as well, authentication was not going to work. So I re-imaged the server (you do have an image of the fresh server, right?), set it up as a 10.5 OD Master again, and then I went back to the 10.4 server.
This time, I decided I would incorporate sed in a different manner.
I went back to the 10.4 Server and this time used the Archive feature inside of Server Manager to get the data out. Once I had the archive, I mounted the disk image and used the sed commands to strip out the Meeting Maker crap, I mean attributes.
First thing to do is mount the sparse image that is the backup. With the image mounted, open Terminal and navigate onto the root of the image. Now that we are there, we just need to list the ldif file and sed it:
cat users.ldif | sed '/comMeetingMakerSignInName/d' | sed '/comMeetingMakerCurrentServer/d' > newusers.ldif
Make sure you verify the name of the LDIF file. Once this command is finished, verify the newusers.ldif file, then delete the users.ldif file and rename newusers.ldif to users.ldif. Make sense?
Now we can take this over to the 10.5 server and restore it there. And guess what? Once we do that, it works. I tested with a restart (several restarts in fact) and sure enough, I could authenticate to the directory.
Now, finally, I have a directory without Meeting Maker in it, which means I can now move forward with getting iCal server up and operational so I can get rid of Meeting Maker all together.
I hope these two articles have helped you out of a bind with Meeting Maker and given you the commands necessary to get up to 10.5.
Back in April I started a new job at an advertising agency here in Dallas. As part of the job I inherited an installation of People Cube’s Meeting Maker calendaring software running on Mac OS X 10.4 Server. One of my first thoughts was to get all of our servers off of 10.4 and on to 10.5 Leopard. As part of that process, I would obviously need to migrate Meeting Maker over to the new server software as well. Seems pretty simple, right? It wasn’t, trust me.
My train of thought was simple, create a 10.4 Open Directory replica, promote that box to master, upgrade it to 10.5, then use similar methods to get the actual OD master up to 10.5 and master again. Sounds simple, right? I thought it was too, that’s until I ran into Meeting Maker and its extended attributes. (of course Kerio has the same problem, but it is easier to get around)
Well, I did just what I said, I created a 10.4 replica and upgraded it to 10.5 and guess what, the users did not come with it. Well, not all of the users came with the upgrade. For some reason, the users showed up in Workgroup Manager, then I upgraded to 10.5 and alot of the users were gone. Like more than 75% were gone. Hmmm, interesting phenomenon going on here, I wonder what it could be.
Well, I beat on the problem a bit more, re-installing 10.4 on the replica and re-creating the replica. This time I went in to WGM before doing the upgrade. Sure enough, all of the users were there, so I restarted the server and wouldn’t you know it, 75% of them were gone again. I smell a conspiracy here.
So I got to looking at the ones that were left, and they all had a common thread: no extended attributes in the LDAP database for Meeting Maker. See, the way that Meeting Maker was set up by the consultant from People Cube was to use extended attributes in the LDAP database to put the server and login name. In our case the attributes were comMeetingMakerSignInName and comMeetingMakerCurrentServer. So, I did what any good sys admin does: I tried and tried and tried to get the data in. I tried importing via ldapadd, I tried archiving the 10.4 and restoring it into 10.5, I think I might have even tried sacrificing a small animal on the server, but nothing worked. So I resorted to the only thing I had left: calling People Cube support.
I received a call back from one of the engineers at People Cube who had no clue what was going on, so he got the consultant on the phone that helped with our original installation. Now, he listened acutely to my woes, and proceeded to inform me that Meeting Maker was never officially intended to run on Open Directory, but that it was more intentioned for OpenLDAP. Then, he told me that as far as he knew no one had put Meeting Maker on 10.5 yet. Huh? 10.5 has been out since November and no one has put it on? Crazy. He gave me some ideas, and after thinking it thru, he actually came up with something that worked.
I was able to utilize information from NetMojo, specifically this article, and sed to get it done. In the next article I’ll give the specific steps I used to get the LDAP info out and into the 10.5 server.
During the day I make my living as a techno weenie for a local ad agency. I manage the systems, network, and all that goes along with that. Part of the process of managing the systems is the deployment, or re-deployment, of desktops and laptops. Being an ad agency, this means deployment of Apple Macintosh systems.
For many years, all the way back to my days with Jeff Turner and Ad/Out, I have been a big proponent of disk imaging for deployment. Back then, in the days of OS 8 and OS 9, it meant carrying around a Syquest drive with a copy of a system on it, dragging that to the system and then blessing the System Folder. For those of you that remember this method, it was easy to do for one or two systems, but when you had over 100 systems to deploy, it took time. As the Macintosh system moved to OS X, imaging systems for deployment got easier and easier. Well, it got less cumbersome to do, and easier for large scale deployments.
For the last several years building an image usually meant one of two things: installing everything on a machine and imaging that (I call it fat Imaging), or installing a base OS and imaging that (layered imaging I call it). When a new machine comes in, you lay on the base image, then lay on the applications (done in packages of course), and away you go, or you lay on the fat image and away you go. The problem with this method has always been the amount of maintenance required to “clean up” the image after configuring preferences, installing apps, setting bookmarks, etc. You always wound up with “cruft” on the image.
I realize this isn’t new to a lot of people, in fact most sys admins already know this, and they already know about a great tool developed by Josh Wisenbaker from AFP548.com, InstaDMG. InstaDMG takes system imaging and deployment to a new level. Using a series of folders with a retail disk image, along with your updates and custom packages, InstaDMG spits out an image that is ready for deployment, having never been run on a computer. This means you don’t get the “cruft” on the system that comes from booting the image, and, best of all in my opinion, the image is Universal so it will work on PPC and Intel machines.
I realize this article is a re-hash of some, if not most, of the information on AFP548 about InstaDMG, but I am so jazzed about this tool, and about what it’s possibilities are, that I want to make sure more people hear about it, and more junior admins learn there is a better way than installing systems using CDs and DVDs.
Are you nuts? I don’t get it. Apple reported their Q2 2008 earnings this afternoon after the stock market closed, and their stock took a slight hit. Forbes is reporting that Apple is wobbling, even though their numbers were great.
Just how great? Check it out, they posted a 36 percent jump in profit and they beat Wall Street estimates by 9 cents a share (they posted $1.16 per share profit). So tell me how all of that equals sell off or wobble? I just don’t get it.
|
