[Samba] RODC in DMZ
Stefan Kania
stefan at kania-online.de
Sun Dec 29 19:29:26 UTC 2024
Am 13.12.24 um 14:38 schrieb Kees van Vloten via samba:
> There is one limitation I forgot to mention: in my config there is a
> module "mr_passthru", it is required if you want to do Microsoft
> LDAP_MATCHING_RULE_IN_CHAIN queries, e.g. for nested group membership
> lookups: "(memberof:1.2.840.113556.1.4.1941:=CN=...) ".
>
> Openldap does not support these by default.
OpenLDAP supports nested groups via acl set ;-), without any aditional
overlay
More information about the samba
mailing list