LDAP groupMapping question (also samba3-pre23 and default groups)

Gerald (Jerry) Carter jerry at samba.org
Sat Apr 26 14:01:25 GMT 2003

Hash: SHA1

On Sat, 26 Apr 2003, Ignacio Coupeau wrote:

> Ignacio Coupeau wrote:
> > I'm playing with a ldif like this:
> > 
> I solved the question.
> All my problem and perhaps other like "samba3-pre23 and default groups"
> may be solved:
> 1. patching the schema to accept cn
> 2. wrote the posixGroup in the LDAP
> I found that the nsswitch.conf (group files) are bypassed by the new 
> code so, the (posix)groups *must be* present in the LDAP or no way to 
> use groupmapping at all.

Right.  This was stated in the release note IIRC.  But now I'm not so 
sure it's the right thing to do.  I'll talk to Volker.

We might consider handling a map entry like we do a sambaAccount
(i.e. keep it as auxilary but add the gidNumber as a required 

cheers, jerry
 Hewlett-Packard            ------------------------- http://www.hp.com
 SAMBA Team                 ---------------------- http://www.samba.org
 GnuPG Key                  ---- http://www.plainjoe.org/gpg_public.asc
 "You can never go home again, Oatman, but I guess you can shop there."  
                            --John Cusack - "Grosse Point Blank" (1997)

Version: GnuPG v1.2.0 (GNU/Linux)
Comment: For info see http://quantumlab.net/pine_privacy_guard/


More information about the samba-technical mailing list