[Samba] LDAP Q: What for use Containers

[Schlomo Schapiro]

Hi,

well, on NDS and Netware you could give file system access rights to a 
container and then all users in that container would inherit these rights. 
BTW, Windows and AD also cannot do this.

Basically it is a way to not use groups but assign information to objects 
based on their position in the LDAP tree. I can imagine many more uses, 
e.g. default servers, logon servers, share access rights, ...

The point is, is there any use of the hierarchical structure of the LDAP 
directory for Samba ? Or does Samba use the LDAP dir only like flat file 
or SQL DB ?

AFAIK there is not yet much or maybe any support for such settings, but I 
want to discuss why not and wether others find it a useful thing to have.

Regards,
Schlomo

On Tue, 20 Apr 2004, Paul Gienger wrote:

> 
> 
> Schlomo Schapiro wrote:
> 
> >Hi,
> >
> >I am planning a Samba3+LDAP installation and was wondering about the use 
> >of putting users into different containers on the LDAP server (similar to 
> >what people do on NDS/eDirectory).
> >
> >Is it possible to then assign rights, options, ... to the containers and 
> >have the users inherit these rights ?
> >  
> >
> What type of 'rights, options,...' are you looking for here?  Perhaps 
> you are looking for a feature that could be given via groups, but more 
> specifics are necessary.
> 
> >Having worked a lot in a Novell environment I of course got used to the 
> >convenience of assigning rights to containers.
> >
> >Is there currently any support for this in Samba ?
> >
> >Is there something planned to facilitate this feature ? I guess it will 
> >also have to go with the host file system ...
> >
> >Any input appreciated,
> >
> >Schlomo
> >
> >  
> >
> 
> 

-- 
Regards,
Schlomo