[Date Prev][Date Next] [Chronological] [Thread] [Top]

groups in groups


I am looking for a way to have OpenLDAP as an authenticating mechanism
to auth groups, and then more specificly: putting group A in group B
and have OpenLDAP also expand group A to the membersUid's when a search
for group B is done. In ldif format, this would look something like

dn: cn=groupA,ou=Group,dc=example,dc=com
cn: groupA
gidNumber: 2001
memberUid: me
memberUid: someoneelse
memberUid: another
userPassword: {crypt}x
objectClass: top
objectClass: posixGroup

dn: cn=groupB,ou=Group,dc=example,dc=com
cn: groupB
gidNumber: 2002
memberUid: notme
memberUid: againanother
memberUid: whatever
memberGid: groupA
userPassword: {crypt}x
objectClass: top
objectClass: posixGroup

where the memberGid does not exist of course. Is this possible?
I could not find the answer, so I post....