On Wednesday, 4 July 2007, Marcin Giedz wrote: > Gavin Henry napisaÅ(a): > > <quote who="Marcin Giedz"> > > > >> Is there any way to do something like this without copying all data many > >> times. > >> > >> 1) there is entry: uid=user1,ou=people,dc=xx,dc=x > >> The entry has objectClass = person, posixAccount etc.. So there is > >> attribute userPassword. > >> > >> 2) there are entries: > >> mail=user1@dom1,ou=domains,dc=xx,dc=x > >> mail=user1@dom2,ou=domains,dc=xx,dc=x > >> mail=user1@dom3,ou=domains,dc=xx,dc=x, > > > > I think your design is a bit strange. Why not have these mail attributes > > as part of the user entry like: > > > > mail: ghenry@suretec.org > > mail: ghenry@suretecsystems.com > > > > And then do your search. You then only need one userPassword. > > Answer is quite simple. I need to have different aliases and virtual > accounts for different virtual domains. So basically I need to split > domains and add email accounts respectively to them. This requirement doesn't preclude the solution Gavin proposed. In fact, I have a system running similar to this (however using mailAlternateAddress). Can you explain why you can't just effectively have multiple aliases which span multiple domains on one entry ? Is it some limitation in your MTA, or your configuration ? For example, if the only reason you can't use this is because you are using mail as the naming attribute ... maybe you should select a different naming attribute? Regards, Buchan -- Buchan Milne ISP Systems Specialist - Monitoring/Authentication Team Leader B.Eng,RHCE(803004789010797),LPIC-2(LPI000074592) http://en.wikipedia.org/wiki/List_of_Internet_slang_phrases
Attachment:
pgpp4wNOPR0p8.pgp
Description: PGP signature