Re: host schema conflict

[Seth Faxon <faxons@gmail.com>]

Thank you much - that's what I'm looking for.  PAM doesn't seem to be
looking at it right now but I'll tinker with it.

Seth


On Tue, 07 Sep 2004 10:50:33 +1000, dan <ml@mutox.org> wrote:
> On Mon, 2004-09-06 at 15:18 -0700, Seth Faxon wrote:
> 
> > My final concern is that if I create my own host attribute will the
> > nss libraries find it or do they look specifically for an account
> > objectClass.
> 
> 
> nssldap/pam_ldap (I cannot recall which) comes with suitable schemas
> called hostObject and authorizedServiceObject.
> 
> # $Id: ldapns.schema,v 1.3 2003/05/29 12:57:29 lukeh Exp $
> # LDAP Name Service Additional Schema
> # http://www.iana.org/assignments/gssapi-service-names
> 
> attributetype ( 1.3.6.1.4.1.5322.17.2.1 NAME 'authorizedService'
>         DESC 'IANA GSS-API authorized service name'
>         EQUALITY caseIgnoreMatch
>         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
> 
> objectclass ( 1.3.6.1.4.1.5322.17.1.1 NAME 'authorizedServiceObject'
>         DESC 'Auxiliary object class for adding authorizedService
> attribute'
>         SUP top
>         AUXILIARY
>         MAY authorizedService )
> 
> objectclass ( 1.3.6.1.4.1.5322.17.1.2 NAME 'hostObject'
>         DESC 'Auxiliary object class for adding host attribute'
>         SUP top
>         AUXILIARY
>         MAY host )
> 
> Cheers,
> 
> Dan
> 
>