[Samba] RODC in DMZ

Stefan Kania stefan at kania-online.de
Sun Dec 29 19:29:26 UTC 2024



Am 13.12.24 um 14:38 schrieb Kees van Vloten via samba:
> There is one limitation I forgot to mention: in my config there is a 
> module "mr_passthru", it is required if you want to do Microsoft 
> LDAP_MATCHING_RULE_IN_CHAIN queries, e.g. for nested group membership 
> lookups: "(memberof:1.2.840.113556.1.4.1941:=CN=...) ".
> 
> Openldap does not support these by default.

OpenLDAP supports nested groups via acl set ;-), without any aditional 
overlay



More information about the samba mailing list