[PATCH] Provisioning external LDAP server
Andrew Bartlett
abartlet at samba.org
Thu Feb 11 00:09:59 MST 2010
On Wed, 2010-02-10 at 16:38 -0500, Endi Sukma Dewata wrote:
> Hi,
>
> Attached are some patches for supporting external LDAP server.
> This topic was discussed briefly before, I have updated the documentation:
> http://www.freeipa.org/page/Samba_4_Provisioning_External_LDAP_Server
>
> Please let me know if you have any questions or feedbacks. Thanks.
I like some parts of this, but it worries me the idea of splitting the
command in two again, even if optionally. The more options we give our
administrators, the more rope they will use to hang themselves. (Samba
administrators seem to assume they need to set every option at once,
rather than use defaults).
I like the first patch, but I'm more cautious after that. However, Red
Hat's goals here are also important to me (and the patches look really
nicely written, so it's hard to say no).
I had hoped the 'ldap backend type' parameter would have been enough
(with the option of 'existing'), but clearly from the work you have put
in here, the task is bigger than I thought.
In short, can we do this, but give less flexibility, and present less
options to the user?
Thanks,
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Cisco Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20100211/19f8a11b/attachment.pgp>
More information about the samba-technical
mailing list