[PATCH] IDMAP Backend part 1 of 2 (LDAP library)

Anthony Liguori aliguor at us.ibm.com
Wed Mar 19 19:27:24 GMT 2003 

Connecting to an ADS server is slightly different than connecting to a 
normal LDAP server (over TLS or something).  I would say that all of the 
LDAP connection code should be abstracted together but the libads 
abstracts away even the LDAP connects to just a plain ads_connect().

The only change we could make is to modify the ads_connect to use smb_ldap 
and have smb_ldap handle ADS style connections.  I don't see where we'd 
really gain much there though.

Anthony Liguori
Linux/Active Directory Interoperability
Linux Technology Center (LTC) - IBM Austin
E-mail: aliguor at us.ibm.com
Phone: (512) 838-1208
Tie Line: 678-1208




Andrew Bartlett <abartlet at samba.org>
Sent by: samba-technical-bounces+aliguor=us.ibm.com at lists.samba.org
03/19/2003 03:46 AM

 
        To:     Anthony Liguori <anthony at codemonkey.ws>
        cc:     Jim McDonough/Portland/IBM at IBMUS, samba-technical at lists.samba.org
        Subject:        Re: [PATCH] IDMAP Backend part 1 of 2 (LDAP library)



On Wed, 2003-03-19 at 12:31, Anthony Liguori wrote:
> This is the first part of an IDMAP LDAP backend for Winbind.  This patch
> moves the ldapsam LDAP routines into a separate library.  There's a lot
> of crazy code in ldapsam to handle the various oddities of different
> ldap libraries.
>
> The next patch will be submitted tomorrow hopefully.  Please comment
> independently on these patches.

So, why not use libads?

The code there has been generalized and will connect to an OpenLDAP
server.

Other than that, it looks good - I like the way of getting the
'internals' when we don't have the 'arg'.

Andrew Bartlett

--
Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net


#### signature.asc has been removed from this note on March 19, 2003 by 
Anthony Liguori

More information about the samba-technical mailing list