[Samba] LDAP suffixes
William Jojo
jojowil at hvcc.edu
Wed Aug 17 15:32:17 GMT 2005
On Wed, 17 Aug 2005, Gerald (Jerry) Carter wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> William Jojo wrote:
> >
> >
> > need clarification of the use of:
> >
> > ldap suffix
> > ldap machine suffix
> > ldap user suffix
> > ldap idmap suffix
> >
> > smb.conf.5 indicates you should have a fully qualified suffix such as:
> >
> > ldap suffix = dc=blah,dc=com
> > ldap machine suffix = ou=People,dc=blah,dc=com
> > ldap user suffix = ou=People,dc=blah,dc=com
> > ldap group suffix = ou=Groups,dc=blah,dc=com
> > ldap idmap suffix = ou=Idmap,dc=blah,dc=dom
>
> The man page is wrong. You can use a fully DN only if
> 'ldap suffix' is an empty string.
>
>
Ok. Should 'ldap suffix' ever be empty? Where would Samba put sambaDomain
objects if this were empty? It seems to me this should never be empty. :-)
Cheers,
Bill
>
>
>
>
> cheers, jerry
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.0 (GNU/Linux)
> Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
>
> iD8DBQFDA1cHIR7qMdg1EfYRAsXyAKCq8GFqct+LEVBP3R+F0M7NzNOm1QCg8xZf
> 8WkxQg2zAzTtyEmyXdE/uDU=
> =LOaG
> -----END PGP SIGNATURE-----
>
More information about the samba
mailing list