[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP/Samba 4 summary



On Montag, 3. Dezember 2007, Andrew Bartlett wrote:
> On Wed, 2007-11-28 at 12:20 +0100, Ralf Haferkamp wrote:
> > On Mittwoch, 28. November 2007, Andrew Bartlett wrote:
> > [..]
> >
> > > > Looking at the configuration, it seems this can only currently be
> > > > configured once - ie, for memberOf.  Am I missing how to configure it
> > > > to also handle an arbitrary number of other attributes?  Ideally I
> > > > would process the AD schema into a configuration file with these
> > > > details.
> >
> > I think you can just create multiple instances of the "memberof" Overlay.
> > Like this:
> >
> > overlay memberof
> > memberof-group-oc group
> > memberof-member-ad member
> > memberof-memberof-ad memberof
> > overlay memberof
> > memberof-group-oc another-oc
> > memberof-member-ad another-member
> > memberof-memberof-ad another-memberof
>
> I'll try this out.  BTW, must the memberof-group-oc be unique?  Could I
> set it to 'top' in all cases, to just key off the attribute?  This
> should simplify the generation from the AD schema.
Yes, that should work. It might have an impact on performance, though.

-- 
Ralf