[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Intro and question

To: "'Stephen Chan'" <sychan@lbl.gov>, "'Bedo Sandor'" <bsanyi@sunserv.kfki.hu>
Subject: RE: Intro and question
From: "Howard Chu" <hyc@symas.com>
Date: Wed, 12 Nov 2003 17:54:02 -0800
Cc: <openldap-software@OpenLDAP.org>
Importance: Normal
In-reply-to: <3FB2DAC6.7020305@lbl.gov>

> -----Original Message-----
> From: owner-openldap-software@OpenLDAP.org
> [mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Stephen Chan

> Bedo,
>     Thanks for the suggestion - the idea of "faking it" with symlinks
> did occur to me, but I'm looking specifically for a solution to the
> "join" idea, instead of client side hacks.

>     Steve
>
> Bedo Sandor wrote:
>
> >On Tue, Nov 11, 2003 at 08:32:59PM -0800, Steve Chan wrote:
> >>	We'd like to have information like usernames, uids, GECOS and password
> >>hashes common across all systems. But home directory, path to shells and
> >>default GID's will be different.

At a site where UIDs need to be uniform (e.g., for the benefit of NFS) it's
advisable to keep GIDs uniform as well.

As for maintaining node-specific user information - I'd suggest extending
nss_ldap to support searching for child entries of users, and having the
node-specific variants live in those child entries. Note that this is an
nss_ldap question, not specifically an OpenLDAP software question; the
discussion properly belongs on the nssldap@padl.com mailing list.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

Follow-Ups:
- RE: Intro and question
  - From: Steve Chan <sychan@lbl.gov>

References:
- Re: Intro and question
  - From: Stephen Chan <sychan@lbl.gov>

Prev by Date: Re: Intro and question
Next by Date: RE: Intro and question
Index(es):
- Chronological
- Thread