[Date Prev][Date Next] [Chronological] [Thread] [Top]

Subordinate knowledge information

To: OpenLDAP-software@OpenLDAP.org
Subject: Subordinate knowledge information
From: Vladimir <vlists@veus.hr>
Date: Tue, 04 Oct 2005 09:08:48 -0600
User-agent: Mozilla Thunderbird 1.0+ (X11/20050531)

We have a successful OpenLDAP deployment used for Linux/UNIX authentication in University environment. Recently we have been approached by a self-managed research group that would like to use our LDAP server for authentication instead of the currently implemented NIS. However they would like to be able to create local user accounts in their "subtree". Since most of the researchers are already in our LDAP 
directory is it possible to refer to specific entries in the main tree from their own subtree. For example let's say our tree is called

dc=domain,dc=edu

and I want to create a subtree called

dc=research,dc=domain,dc=edu

on the same server and point the research groups' machines to the newly created subtree. Is it now somehow possible to point e.g.

uid=user,cn=users,dc=research,dc=domain,dc=edu ===>  uid=user,cn=users,dc=domain,dc=edu

Main purpose is not to have to duplicate user entries. I looked into the admin guide and it appears I can only make a referral to a whole subtree ie. subordinate knowledge. Can I do the same for individual entries ? If so does anyone have LDIF examples of how to do it.

Thanks,

Vladimir


-- 
Vladimir

Follow-Ups:
- Re: Subordinate knowledge information
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: Subordinate knowledge information
  - From: Karsten Gorling <kgorling@physik.tu-berlin.de>

Prev by Date: Another 2.2.23 oddity
Next by Date: Re: Subordinate knowledge information
Index(es):
- Chronological
- Thread