Hi,
with this patch the LDAP backend can store two additional attributes to the sysdb if available. The original DN is used by the authentication part of the LDAP backend to bind to the LDAP server. The user principle name (UPN) can be used by the kerberos backend to get the TGT. Both are necessary if the DN or UPN cannot be generated from the unix user name, which is often the case if you are using AD.
bye, Sumit
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 08/20/2009 08:15 AM, Sumit Bose wrote:
Hi,
with this patch the LDAP backend can store two additional attributes to the sysdb if available. The original DN is used by the authentication part of the LDAP backend to bind to the LDAP server. The user principle name (UPN) can be used by the kerberos backend to get the TGT. Both are necessary if the DN or UPN cannot be generated from the unix user name, which is often the case if you are using AD.
bye, Sumit
sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel
Ack.
Please add new sysdb tests for the sysdb_store_user_with_attrs_send() function sometime soon.
- -- Stephen Gallagher RHCE 804006346421761
Looking to carve out IT costs? www.redhat.com/carveoutcosts/
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 08/21/2009 12:38 PM, Stephen Gallagher wrote:
On 08/20/2009 08:15 AM, Sumit Bose wrote:
Hi,
with this patch the LDAP backend can store two additional attributes to the sysdb if available. The original DN is used by the authentication part of the LDAP backend to bind to the LDAP server. The user principle name (UPN) can be used by the kerberos backend to get the TGT. Both are necessary if the DN or UPN cannot be generated from the unix user name, which is often the case if you are using AD.
bye, Sumit
sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel
Ack.
Please add new sysdb tests for the sysdb_store_user_with_attrs_send() function sometime soon.
Pushed to master. _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel
- -- Stephen Gallagher RHCE 804006346421761
Looking to carve out IT costs? www.redhat.com/carveoutcosts/
sssd-devel@lists.fedorahosted.org
-
Stephen Gallagher -
Sumit Bose