[PATCH] ldap account separation patch

David Lee t.d.lee at durham.ac.uk
Thu Jan 17 10:39:49 GMT 2002

On Thu, 17 Jan 2002, Andrew Morgan wrote:

> [...]
> Just to be clear, this means you are hard-coding the subtree names in
> Samba to "ou=people" and "ou=computer", right?  I don't think this will be
> too much trouble, but it should be clear in the docs that you are required
> to setup your directory in this fashion.  Actually, if you hard-code these
> values in place, then samba still could create the machine account...

My query starts "on topic" but, I acknowledge, is probably going

We are just about to design a new (and first) Active Directory (LDAP-ish) 
set-up.  I, too, seem to recall seeing hints (or suggested conventions) 
about using "ou=people" and "ou=computer".  One was RFC2307[bis] (the NIS
X.500 schema).

My LDAP experience is small: the folk who are planning this are even less

Are there are recommendations, conventions, "common practices", etc. for
naming such ou's?  (In our case, RFC2307 will be an important aspect.) 
Sending URLs to me would be fine. 

(As this has probably drifted way off-topic, please feel free to reply
privately, rather than on the list.)


:  David Lee                                I.T. Service          :
:  Systems Programmer                       Computer Centre       :
:                                           University of Durham  :
:  http://www.dur.ac.uk/t.d.lee/            South Road            :
:                                           Durham                :
:  Phone: +44 191 374 2882                  U.K.                  :

More information about the samba-technical mailing list