[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Groups Explanation

To: openldap-software@OpenLDAP.org
Subject: Re: Groups Explanation
From: Adam Tauno Williams <adam@morrison-ind.com>
Date: Tue, 01 May 2001 10:52:23 -0400 (EDT)
In-reply-to: <F70NPPzQT456UnHAaaz0000bdd3@hotmail.com>
References: <F70NPPzQT456UnHAaaz0000bdd3@hotmail.com>
User-agent: IMP/PHP IMAP webmail program 2.2.1

>Could anyone in fifty words or less (actually take as many words as you
>need) explain the difference between a posixGroup, groupOfNames, and 
>groupOfUniqueNames? I'm familiar with Novell's NDS and MS Active
>Directory's  implementation of groups. That's what I want to emulate with
>OpenLDAP. In other words, I want to add objects the the OpenLDAP directory
>(whether it be servers, applications, printers, other users, etc..) and 
>assign permissions to the groups rather than individual users. Do I have a
>misconception of what OpenLDAP can do? Is this possible to do in OpenLDAP? 
>I want to scrap NDS/Active Directory and replace it with OpenLDAP as my
>metadirectory. Is this possible?
>BTW - I'm using OpenLDAP 2.0.7 on a RH 7.0 server

What is your client OS?  If you are using PAM/NSS you can create posixGroup
objects that are just like having an entry in /etc/group.  If you have a Samba
PDC (2.2.x) to NT boxes it can integrate NT<->UNIX groups (UNIX using NSS to get
groups from OpenLDAP).

Systems and Network Administrator
Morrison Industries
1825 Monroe Ave NW.
Grand Rapids, MI. 49505

References:
- Groups Explanation
  - From: "John Humphrey" <txkjohn@hotmail.com>

Prev by Date: Groups Explanation
Next by Date: LDAP Design Advice
Index(es):
- Chronological
- Thread