Questions (about Samba4 built-in LDAP capabilities) !
Matthieu Patou
mat at samba.org
Tue Apr 17 11:08:54 MDT 2012
Hello Alejandro,
On 04/17/2012 01:38 AM, Alejandro wrote:
> Hi Matthias.
> There are any doc about extending schemas and third party schemas?
>
> In the Wiki the "Samba4/Schema extensions" link go to nothing.
My fault, fixed. But the landing pages is all about what schema
extensions that we know are working (or me made them working).
> The answer in the FAQ to this question isn't clear at all,
So you can extend schema, the thing is that with the current version of
samba you have to be very cautious because it can corrupt your schema
update files are not correct.
I've been working on fixes for this that should land in the master git
tree pretty soon. But even with those patches all the problems are and
won't be ever solved.
Samba 4 is using the same schema as Microsoft AD, it means that if the
attribute/class already exists in Samba 4's schema then you have a
problem. I worked lately on the dhcp schema for ISC DHCP and that's a
perfect example as it has 2 classes which conflict with those already
present in samba 4.
So you might want to try to pick my branch
http://gitweb.samba.org/?p=mat/samba.git;a=shortlog;h=refs/heads/misc
and try to import your schema in samba 4 (a test one) and see how
bad/well it goes.
Matthieu.
> Thanks.
>
> Note: I'm very interested in migrate the GOsa schemas to LDB to give
> to GOsa/Fusiondirectory Samba4 support.
>
> 2012/4/17 Matthias Dieter Wallnöfer<mdw at samba.org>:
>> Per default we are providing a subset of that what MS AD provides - VLV,
>> dynamic lists and dynamic groups (as far as I know) do not make part of it.
>> Eventually ANR could be a bit similar. "memberOf" however is supported on
>> behalf of the same semantics as on Windows. The schema on s4 is extensible
>> but updates have to be explicitly allowed (smb.conf setting) due to some
>> stumbling blocks which have yet to be fixed.
>> The semantics can be enhanced by writing additional LDB modules
>> (lib/ldb/modules - generic - not only AD, source4/dsdb/samdb/ldb_modules -
>> only AD specific). We accept such contributions in our source tree as long
>> as they meet a certain quality and there is any broader use.
>>
>> Matthias Wallnöfer
>>
>> oooo1 at front.ru schrieb:
>>
>>> I have read
>>>
>>> http://sambaxp.org/fileadmin/user_upload/media/07_-_simo_sorce_-_samba_team_-_ldb_and_the_ldap_in_samba4.pdf,
>>> there is written that server side sorting (server_sort) or SSS control are
>>> added to Samba4 built-in LDAP (LDB) .Are there added virtual list view (VLV)
>>> too, as memberof, dyynamiclists, dynamicgroups ?Will Samba4 LDAP support
>>> OpenLDAP schemas such as for Exim, PureFTPd and others (delivered with all
>>> this soft) ?
>>
>
>
--
Matthieu Patou
Samba Team
http://samba.org
More information about the samba-technical
mailing list