On Sun, 2008-01-20 at 14:16 -0800, Quanah Gibson-Mount wrote: > --On Monday, January 21, 2008 8:31 AM +1100 Andrew Bartlett > <firstname.lastname@example.org> wrote: > > > > Trying to determine where AD diverges from the schema OpenLDAP uses is > > not a task I've yet taken on. > > s/schema OpenLDAP uses/RFC definitions/ > > :P > > That's one of the nightmares in dealing with AD. Things like making cn > single valued causes no end to headaches. One of the tasks I need to do is solve, to some extent, this headache. I'm very interested to know of any existing mappings between AD's LDAP and the RFC variety. Fedora DS has one, for it's AD sync plugin, but it only deals with users, and in to many respects it just defines new elements rather than mapping. Are there any others that you know of? (or at least a table of the classes that Microsoft didn't mess with). I strongly suspect I won't ever get to the stage of being able to use OpenLDAP's schema files, unless they are strictly broken up into files that do and don't conflict with Microsoft (which is probably not an OpenLDAP goal :-) Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Red Hat Inc.
Description: This is a digitally signed message part