[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#5296) Search netgroup by triple don't report existing entry

Rochette_Jean-Louis@emc.com wrote:
> Hi Howard,
> thank you for your answer, though I found it severe and not very 
> constructive.

Our purpose is to deliver an LDAP implementation that complies strictly with 
the existing specs; that's the only way to guarantee interoperability. 
Altering the files we bundle to be non-compliant with the published specs is 
always a bad idea. If you find that some schema is deficient, as is the case 
with the RFC2307/NIS schema, the correct solution is to fix the spec first.

> I finally found the solution at:
> http://www.openldap.org/lists/openldap-software/200501/msg00309.html
> Since people have been having problems with this case for at least 2 
> years now, I think it's worth to put the solution in this ITS entry:
> To allow searching for netgroups by triple, possibly using wildcards, 
> you have to change the nis.schema which comes with openldap as follows:
> attributetype ( NAME 'nisNetgroupTriple'
> DESC 'Netgroup triple'
> EQUALITY caseIgnoreIA5Match
> SUBSTR caseIgnoreIA5SubstringsMatch
> # EQUALITY and SUBSTR directives added, SYNTAX changed.
> Jean-Louis.

   -- Howard Chu
   Chief Architect, Symas Corp.  http://www.symas.com
   Director, Highland Sun        http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP     http://www.openldap.org/project/