[Samba] Samba 4 Active Directory Quotas
rowlandpenny at googlemail.com
Sun Dec 28 02:24:33 MST 2014
On 28/12/14 02:10, Greg Zartman wrote:
> On Sat, Dec 27, 2014 at 2:43 AM, Rowland Penny
> <rowlandpenny at googlemail.com <mailto:rowlandpenny at googlemail.com>> wrote:
> Yes, samba4 comes with a script: oLschema2ldif
> Humm... Not liking the errors in this method. Looking at the ldif, I
> think we could rework this so that one could modify the LDAP schema
> directly using LDAP syntax. In my case, I'm using Net::LDAP.
> Something more like this:
> dn: CN=systemQuotas,CN=Schema,CN=Configuration,DOMAIN_TOP_DN
> objectClass: top
> objectClass: classSchema
> governsID: 188.8.131.52.4.1.199184.108.40.206
> cn: systemQuotas
> name: systemQuotas
> ldapDisplayName: systemQuotas
> subClassOf: posixAccount
> objectClassCategory: 3
> mustContain: uidNumber
> mayContain: quota
> possSuperiors: top
> changetype: modify
> replace: schemaupdatenow
> schemaupdatenow: 1
> Partially taken from here:
> Need to test this out a bit more and add the quota attribute, but I
> think this will ultimately add what I'm after.
Not sure if this will work, but by all means try it, if you do, make
sure that you do it on a DC that you don't mind loosing, just in case it
screws up the AD.
If it does work, please let us know.
> Note that the objectClass in the above ldif is a subclass of
> 'posixAccount' and to use it, you will have to add the 'uid'
> attribute to all users, you do not need to add (and in fact should
> not) the 'posixAccount' objectClass'.
> Yup, I did find this objectClass, which I have been using to delineate
> Centos (SME Server) users from other users in the active directory.
> Thanks Rowland.
> Greg J. Zartman
> Board Member
> Koozali SME Server
> www.koozali.org <http://www.koozali.org>
> SME Server user, contributor, and community member since 2000
More information about the samba