[389-users] Syncing AD groups and multiple (samba) domains
Rich Megginson
rmeggins at redhat.com
Tue Jul 3 17:08:09 UTC 2012
On 07/03/2012 10:59 AM, Orion Poplawski wrote:
> On 07/03/2012 10:49 AM, Rich Megginson wrote:
>> On 07/03/2012 10:45 AM, Orion Poplawski wrote:
>>> We are looking to sync our groups between our ldap server and an AD
>>> server.
>>> Our LDAP server also serves a samba domain for one of our offices.
>>> As a
>>> result we have Domain Admins and Domain Computers groups for the samba
>>> domain that we don't want to conflict with the AD groups of the same
>>> names.
>>>
>>> So it seems like we should move the samba domain groups into a
>>> different
>>> part of the tree. But we would still want to have a common shared
>>> group
>>> area that is visible by all. Any suggestions as to how to achieve
>>> this?
>>
>> Unless AD stores these groups in a different place in the tree, not
>> in the
>> scope of other groups, I don't think it is possible with 389. Please
>> file a
>> ticket.
>>
>
> Filed here: https://fedorahosted.org/389/ticket/404
>
> Not sure about components, etc or even the description. Please fix up
> as needed. Thanks!
>
Not to worry. Thanks!
More information about the 389-users
mailing list