[Date Prev][Date Next]
Re: Duplicated username in Local users and LDAP
Well, a good OpenLDAP answer to this response might be to use
ldapdelete(1) on the accounts you don't want to have in LDAP, or to use
ACLs to restrict access to entries that you do not want visible.
Apart from OpenLDAP software, there are other (quite possibly better)
responses to be had if you talk with the provider of your nss_ldap module
(or, if open source, an appropriate mailing list), the provider of your
operating system (hint: nsswitch.conf), or the ldap-interop mailing list
to help you glue together one or more of these options.
On Thu, 9 Nov 2006, Phillip wrote:
I meet some trouble when there are duplicated username in both local users
list and LDAP users list, and I think it may cause security problems, for
example, in my case, "root" and "admin" account from LDAP could even control
the whole system. I do not want this happens.
Would you please give me some advices on how to dare with this duplicated