[Date Prev][Date Next]
Re: Multiple domains searchable
I am currently doing exactly this- managing multiple domains, with each
domain in its own database.
Each domain's user information appears in a tree like:
etc. Each of these suffixes is contained in its own seperate backend
In order to search for a particular user, I have another table which
contains pointers to the proper location in the user tables.
user entry for email@example.com:
cn: Bob Jones
user entry for firstname.lastname@example.org:
cn: John Smith
And then we have the "pointer" entries, one entry for each user in all of
your domains. All pointer entries go into a single database.
Then, to find any particular user's entry, look up first in xyz.com, get
the proper basedn from the authdn attribute, and then use that to look up
the final information.
What I REALLY want to be able to do is to make the pointer entries into
LDAP aliases. That would tremendously simplify things because as I see
it, the LDAP server will then dereference the alias for you, and save you
from having to do two lookups. However, I haven't been able to get
OpenLDAP to do this, I've beat my head against it for days and I can't get
aliases to work.
So instead, I've had to make minor modifications to each of the clients to
make them do two lookups.
On Mon, 29 Mar 2004, Lukas Kubin wrote:
> We are working on an e-mail solution for multiple domains, all contained
> in one LDAP server - multiple databases. We need the smtp server to be
> able to search for an e-mail address through all the domains in one
> query. I guess we need to only use one base for a search filter.
> How should we build our tree then?
> One idea I have is to create an additional object (dc=somecommonname)
> closest to root. Is the following a correct way?
> Is there any other solution for this problem?
> Lukas Kubin
> phone: +420596398275
> email: email@example.com
> Information centre
> The School of Business Administration in Karvina
> Silesian University in Opava
> Czech Republic