structuralObjectClass multi-valued in W2K8

Michael Ströder michael at
Tue Apr 21 13:24:28 GMT 2009

Andrew Bartlett wrote:
> On Sat, 2009-04-18 at 17:36 +0200, Michael Ströder wrote:
>> Looking at a user entry in MS AD on W2K8 there's a bug with attribute
>> 'structuralObjectClass'. It lists all (structural) object classes
>> whereas other LDAPv3 compliant servers only list *the* structural object
>> class of an entry. Normally 'structuralObjectClass' is SINGLE-VALUE.
>> [..]
>> Why to care about this? A really schema-aware client (e.g. my web2ldap)
>> might look at the attribute structuralObjectClass while determining the
>> governing structural rule of an entry (in case DIT structure rules are
>> in effect).
>> Now the question is whether Samba4 wants to mimique this bug or whether
>> it would be worth trying to convince the MS developers to fix it.
>> There are other schema bugs like 'objectClass' being declared as
>> NO-USER-MODIFICATION while MS AD happily accepts modifications...
> Samba4 will implement the same 'bugs' as AD in all these cases.  

And if MS fixes these bugs later Samba4 will also get "fixed"?
So why not talk to them before putting effort into mimique the bugs?

Is the current reference for Samba4 W2K8R2?
(Can't test this myself because I don't have 64-bit hardware available).

Ciao, Michael.

More information about the samba-technical mailing list