Implementing nested groups for openldap v2.2 and samba
Utsav Mohata
Utsav.Mohata at harmonicinc.com
Fri Mar 23 11:28:45 MDT 2012
Hi All,
Versions of my software are :
OpenLDAP 2.2.13-7.4E
Samba : 3.0.10-1.4E.11
I am a newbie trying to implement nested groups for openLDAP.
Does the above version of OpenLDAP and Samba support nested groups ?
My question pertains to sambaSIDList for implemnting nested groups
As per my understanding, I could add sids of the subgroups as value of sambSIDList
My ldif file :
dn: cn=PDM,ou=Groups,dc=example,dc=com
cn: PDM
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 625
sambaSid: S-1-5-21-3782130030-2455357663-1162092550-626
sambaGroupType: 2
sambaSIDList: S-1-5-21-3782130030-2455357663-1162092550-620 <-- another group entry
sambaSIDList: S-1-5-21-3782130030-2455357663-1162092550-622 <- another group entry
This does not work for me. I read somewhere that this just works for local groups and not domain groups which all of the above groups are.
Am I missing something?
Do let me know if I should post output of something else also.
Thanks in advance.
Rgds,
Utsav
More information about the samba-technical
mailing list