[Samba] Managing LDAP ACL

Rowland Penny rpenny at samba.org
Tue Sep 13 06:57:40 UTC 2022

On 12/09/2022 10:33, Pavel Březina via samba wrote:
> Hi,
> I have SSSD connected to an instance of Samba DC with imported custom 
> schema. I'm using python-ldap and Administrator account to create an 
> organizational unit and objects with an object class from the custom 
> schema.
> However, it seems that it lacks proper ACL as it is only visible when 
> using Administrator account and not when using the client computer 
> account (through GSSAPI auth).
> Is there any way I can make this organizational unit and its subtree 
> accessible?
> Thanks,
> Pavel

Yes, stop using sssd, it doesn't do ACL's (among other things)


More information about the samba mailing list