[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: schema design and schema restrictions

On Wednesday 26 November 2008 06:07:28 Mansour Al Akeel wrote:
> Hello all,
> I an new to LDAP, and I have a need to migrate the existing system to
> ldap as this will ease a bit the management for the new system
> implementation. I need to authenticate users for a web site, and for the
> internal system ( linux, windows stations .... etc). Now the available
> account objectclass is structural

Sou you shouldn't use it, but intead the hostObject auxiliary objectclass 
provided in the ldapns.schema file shipped with pam_ldap.


> This is in fact not only specific to this senario. I couldn't
> find any docs about how to prevent objectClass domain to be added under
> group !

There are two interpretations of this statement, please be more clear about 
this matter.