[Date Prev][Date Next]
Referral and Chain configuration and multiple directories
- To: firstname.lastname@example.org
- Subject: Referral and Chain configuration and multiple directories
- From: sim sim <email@example.com>
- Date: Thu, 27 Oct 2011 15:32:44 -0700
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; bh=HtzbdX63Qx25wkfCeIPIhUJLlycxT5D+k6SZmwfV2YM=; b=IBdASGu6tBbrCh2XzvpwtnhBB826Ke8dRi6i/hEDyLjOKd/n3ZyqM9NZN/Kzo6F359 dKyqw8lnSC3ZHKic/bMvGSmLUH4Ii8DgyXHBFH7ZSOsyK1NuVt6QhDt3m6sjukkE+aI0 k+hN2bzBJSSm56qS8fMcwV1KBovfV1cuUJ6Kc=
I have an LDAP server running with all users and respective groups say (a.example.net
). I was wondering if there is any way I could separate user subtree into another OpenLDAP server (b.example.net
) and still be able to define those users as member of groups in a.example.net
(for a new requirement). Basically I want to separate user repository (which is global) from all other subsystems like my groups or organization units which contains these users as members. If its possible, please point me to the documentation, I tried searching all over but could not find enough example of Referrals or proxying. Another thing I would like to understand that is it a good idea to create another directory server just for user authentication and read, how common it is? Or should I consider replication?
Thanks for the help and support.