[Samba] objectClass:posixAccount missing
Gary Greene
ggreene at minervanetworks.com
Tue Aug 27 15:56:17 MDT 2013
If you set it up with '--use-rfc2307', nslcd needs configured as though it is talking to an SFU 3.5 DC. The RFC 2307bis attributes never add additional classes to the AD member objects, even in an SFU environment.
--
Gary L. Greene, Jr.
Sr. Systems Administrator
IT Operations
Minerva Networks, Inc.
Cell: (650) 704-6633
________________________________________
From: samba-bounces at lists.samba.org [samba-bounces at lists.samba.org] on behalf of Rowland Penny [rowlandpenny at googlemail.com]
Sent: Tuesday, August 27, 2013 02:02 PM
To: samba at lists.samba.org
Subject: Re: [Samba] objectClass:posixAccount missing
On 27/08/13 19:56, Luca Olivetti wrote:
> Al 27/08/13 20:46, En/na steve ha escrit:
>> On Tue, 2013-08-27 at 20:11 +0200, Marc Muehlfeld wrote:
>>
>>> Do posixAccount/posixGroup
>>> objectClasses have to be there normally?
>> No. With the AD schema, you can use all of rfc2307 without the need for
>> the objectclassed which define them. Just add the attributes.
> But then nslcd doesn't see them (and, yes, I removed the filters you
> talked about in your previous message, I will worry later about sasl):
If nslcd needs the posix objectclasses, then that is their bug, windows
does not use them so Samba 4 doesn't either.
>
> pagesize 1000
> referrals off
>
> map passwd homeDirectory UnixHomeDirectory
> map passwd uid samAccountName
>
> uid nslcd
> gid ldap
>
> uri ldap://127.0.0.1:389
> base cn=Users,dc=wetron,dc=es #also tried dc=wetron,dc=es
>
> binddn cn=nslcd-connect,cn=Users,dc=wetron,dc=es
> bindpw -------
>
> Bye
Have you tried 'uri ldap://<servers FQDN>:389 ?
Rowland
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
More information about the samba
mailing list