[IPA] SID allocation using DNA plugin
Michael Ströder
michael at stroeder.com
Thu Nov 12 13:09:48 MST 2009
Andrew Bartlett wrote:
> On Wed, 2009-11-11 at 18:08 -0500, Endi Sukma Dewata wrote:
>> However, I'm still missing the schemaIdGuid. How do I get the value of
>> this attribute for each Samba 3 schema element? Is it generated randomly
>> or converted from another value, and which function should I use?
>
> MD5(OID) perhaps? (That would be unique and consistent).
1. GUID seems to me to be a globally unique ID. If generating those I'd stick
to how to generate UUIDs (see RFC 4122).
2. What makes you think the value for schemaIDGUID has to be generated at all?
I don't claim to be an expert on this but I'd check on AD DCs whether values
really differ. I did on two DCs and they didn't. [MS-ADA?] lists specific
values for each schema entry. Only if not defined when adding a schema config
entry the value is auto-generated (see [MS-ADA3]).
=> So if you really want to have 100% compability you should probably import
those values from AD schema and implement the auto-generate functionality as
per RFC 4122.
Ciao, Michael.
More information about the samba-technical
mailing list