Hi,
this patch extends the man page of the LDAP backend and added a configuration example for AD.
bye, Sumit
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 08/20/2009 09:42 AM, Sumit Bose wrote:
Hi,
this patch extends the man page of the LDAP backend and added a configuration example for AD.
bye, Sumit
sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel
Ack. One minor typo that I will fix when I push:
+ The LDAP attribute that list the user's + groupmenberships.
Should be 'group memberships'
- -- Stephen Gallagher RHCE 804006346421761
Looking to carve out IT costs? www.redhat.com/carveoutcosts/
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 08/21/2009 12:42 PM, Stephen Gallagher wrote:
On 08/20/2009 09:42 AM, Sumit Bose wrote:
Hi,
this patch extends the man page of the LDAP backend and added a configuration example for AD.
bye, Sumit
sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel
Ack. One minor typo that I will fix when I push:
The LDAP attribute that list the user'sgroupmenberships.Should be 'group memberships'
Pushed to master. _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel
- -- Stephen Gallagher RHCE 804006346421761
Looking to carve out IT costs? www.redhat.com/carveoutcosts/
On Thu, 2009-08-20 at 15:42 +0200, Sumit Bose wrote:
+; userName = msSFU30Name
Just noticed you are using the old MS SFU schema extensions as examples. These extensions are obsoleteed since Windows 2003 R2 came out, and I really don't think we should advertise them as a good default configuration.
Windows 2003 R2 includes rfc2307 extensions, please use the attributes names specified there.
HP has a nice doc about the mappings: http://docs.hp.com/en/J4269-90062/ar01s03.html?btnNext=next%A0%BB
Simo.
On Sun, Aug 23, 2009 at 05:48:01PM -0400, Simo Sorce wrote:
On Thu, 2009-08-20 at 15:42 +0200, Sumit Bose wrote:
+; userName = msSFU30Name
Just noticed you are using the old MS SFU schema extensions as examples. These extensions are obsoleteed since Windows 2003 R2 came out, and I really don't think we should advertise them as a good default configuration.
Windows 2003 R2 includes rfc2307 extensions, please use the attributes names specified there.
HP has a nice doc about the mappings: http://docs.hp.com/en/J4269-90062/ar01s03.html?btnNext=next%A0%BB
good point. I will make some test and update the example.
Btw. I was thinking about introducing some meta-providers like files, where a number of sensible options is set in one run. For example 'provider=ADS' or 'provider=ADS_SFU' which will set the RFC2307 or SFU mappings respectively and other useful options. Another candidate would be 'provider=IPA'. With the DNS helper our config files would look quite simple:
[domains/MYIPA.COM] provider = IPA
[domains/MYADS.COM] provider = ADS
What do you think about this?
bye, Sumit
On Mon, 2009-08-24 at 11:28 +0200, Sumit Bose wrote:
good point. I will make some test and update the example.
Btw. I was thinking about introducing some meta-providers like files, where a number of sensible options is set in one run. For example 'provider=ADS' or 'provider=ADS_SFU' which will set the RFC2307 or SFU mappings respectively and other useful options. Another candidate would be 'provider=IPA'. With the DNS helper our config files would look quite simple:
[domains/MYIPA.COM] provider = IPA
[domains/MYADS.COM] provider = ADS
What do you think about this?
It's an interesting idea, and would allow us to keep as much code as possible in common.
Unless we find that the code becomes too full of switches I'd agree to go this way.
Simo.
sssd-devel@lists.fedorahosted.org
-
Simo Sorce -
Stephen Gallagher -
Sumit Bose