Idmap feature request/suggestion

Volker Lendecke Volker.Lendecke at SerNet.DE
Tue May 15 12:32:17 MDT 2012


On Tue, May 15, 2012 at 05:19:41PM +0200, Volker Lendecke wrote:
> On Tue, May 15, 2012 at 06:14:57PM +0300, Nimrod Sapir wrote:
> > This is relevant for ldap only, right? not for using SFU/NIS. Also (and 
> > correct me if I am wrong), the ldap will assign the UIDs using a 
> > non-deterministic tdb2-style allocation. If I want to use a deterministic 
> > backend (like RID), while allowing the customer to pre-define some of the 
> > mapping entries (using either NIS, LDAP or SFU), I don't believe that 
> > there is currently any good solution. 
> 
> You have the choice between deterministic preallocation for
> idmap_ldap and incremental automatic allocation for the the
> rest. It might take a bit of disk space, but it should be
> trivial to fill the directory with 10.000.000 entries
> according your chosen deterministic algorithm. With proper
> indexing and a well-performing LDAP server the performance
> impact should not be noticable. And once we read the entries
> from LDAP we cache them in a local tdb.

While there -- "net idmap restore" works perfectly fine for
huge tdb's as well. If you prefill that and use a large
hashsize, overhead will be trivial.

With best regards,

Volker Lendecke

-- 
SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen
http://www.sernet.de, mailto:kontakt at sernet.de


More information about the samba-technical mailing list