get_domain_user_groups() improvement.
Simo Sorce
idra at samba.org
Fri Sep 24 08:25:15 GMT 2004
On Thu, 2004-09-23 at 17:14, Igor Belyi wrote:
> Gerald (Jerry) Carter wrote:
>
> > Andrew Bartlett wrote:
> > |> Maybe you don't care about it anymore, but those people
> > | Sorry - I didn't mean it to come across like that. Of
> > I should have added a note that this was not a
> > personal comment. I just want to make sure that no
>
>
> I didn't mean to stir a fight... (mwa-ha-ha!) ;o)
>
> Just to clarify the idea - pushing _all_ NSS calls from common pdbpass
> functions into backends and letting ldapsam backend assume that UNIX
> accounts and groups are in traditianal LDAP objects while keeping all
> other backends to use NSS calls is the right approach. Is that correct?
no, sorry that is not correct.
There is always one account that do not obey that rule, that's root
(never seen anybody putting it into ldap, it is always in /etc/passwd).
And I've seen other environments that also use ldap only for samba user
part storage and not for unix user storage (no nss_ldap on the system).
Simo.
--
Simo Sorce - idra at samba.org
Samba Team - http://www.samba.org
Italian Site - http://samba.xsec.it
More information about the samba-technical
mailing list