LDAP: seperated "ldap suffix" for machine accounts

Luke Kenneth Casson Leighton lkcl at switchboard.net
Thu Jan 21 15:27:42 GMT 1999


jean-francois wrote up a proper scheme originally, i stuffed it up which
was really stupid.

matt, can you put trust accounts in a separate schema?

On Thu, 21 Jan 1999, Martin Hofbauer Bacher Systems EDV wrote:

> LDAP Servers User DB is normally used for many purposes,
> like mail,samba,...
> 
> Users are worried, when they see machine accounts in an e.g. Netscape

trust account, not machine account.

> Mail addressbook query.I know you can select by using/not using special
> ldap attributes. Helps also a lot for admin. things.
> 
> Is it possible to add an additional config entry like:
> 
> ldap machine suffix = ( e.g: ou=Machine,o=...,c=AT)
> ldap user suffix = (e.g.: ou=Peoble,o=...,c=AT)
> 
> I  know there is the problem, that the uid must be unique ...
> 
> But, if you do not add the uid into the DN than the problem exist already
>  with LDAP !
> 
> 
> Thanx
> 
> -------------------------------------------------------------------
> Martin Hofbauer                                       IT-Consulting
> phone : +43 (1) 60 126-34                   Bacher Systems EDV GmbH
> fax   : +43 (1) 60 126-4                         Wienerbergstr. 11B
> e-mail: mh at bacher.at                         A-1101 Vienna, Austria
> --
> 
> 

<a href="mailto:lkcl at samba.anu.edu.au" > Luke Kenneth Casson Leighton  </a>
<a href="http://mailhost.cb1.com/~lkcl"> Samba and Network Development </a>
<a href="http://www.samba.co.uk"       > Samba and Network Consultancy </a>



More information about the samba-technical mailing list