[389-users] Syncing AD groups and multiple (samba) domains
Rich Megginson
rmeggins at redhat.com
Tue Jul 3 16:49:41 UTC 2012
On 07/03/2012 10:45 AM, Orion Poplawski wrote:
> We are looking to sync our groups between our ldap server and an AD
> server. Our LDAP server also serves a samba domain for one of our
> offices. As a result we have Domain Admins and Domain Computers
> groups for the samba domain that we don't want to conflict with the AD
> groups of the same names.
>
> So it seems like we should move the samba domain groups into a
> different part of the tree. But we would still want to have a common
> shared group area that is visible by all. Any suggestions as to how
> to achieve this?
Unless AD stores these groups in a different place in the tree, not in
the scope of other groups, I don't think it is possible with 389.
Please file a ticket.
>
> Thanks!
>
More information about the 389-users
mailing list