LDAP groupMapping question (also samba3-pre23 and default groups)
Gerald (Jerry) Carter
jerry at samba.org
Sat Apr 26 14:01:25 GMT 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sat, 26 Apr 2003, Ignacio Coupeau wrote:
> Ignacio Coupeau wrote:
> > I'm playing with a ldif like this:
> >
>
> I solved the question.
> All my problem and perhaps other like "samba3-pre23 and default groups"
> may be solved:
> 1. patching the schema to accept cn
> 2. wrote the posixGroup in the LDAP
>
> I found that the nsswitch.conf (group files) are bypassed by the new
> code so, the (posix)groups *must be* present in the LDAP or no way to
> use groupmapping at all.
Right. This was stated in the release note IIRC. But now I'm not so
sure it's the right thing to do. I'll talk to Volker.
We might consider handling a map entry like we do a sambaAccount
(i.e. keep it as auxilary but add the gidNumber as a required
attribute).
cheers, jerry
----------------------------------------------------------------------
Hewlett-Packard ------------------------- http://www.hp.com
SAMBA Team ---------------------- http://www.samba.org
GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc
"You can never go home again, Oatman, but I guess you can shop there."
--John Cusack - "Grosse Point Blank" (1997)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.0 (GNU/Linux)
Comment: For info see http://quantumlab.net/pine_privacy_guard/
iD8DBQE+qpE1IR7qMdg1EfYRAo+wAKClHCPM6ZvviG/Qo7q53D8T1WVswQCg42ip
+/91qD2w+o2NwrAGuPp2DNA=
=8ilF
-----END PGP SIGNATURE-----
More information about the samba-technical
mailing list