Maybe I can help a bit here. Microsoft supposedly uses the standard rfc2307 schema, however, they seem to embellish the standard with their own naming -- particularly prefacing the names with "mssfu" (Microsoft Services for UNIX).
I have a couple of broader questions along this line that I've not been able to discern/decipher out of the information to implement LDAP with autofs. (1) How does one utilize ldaps. All the notes I've seen has been insecure transport. We can't justify GSSAPI and TLS simple fits our needs. (2) Why doesn't autofs (or maybe it does and it doesn't make sense) utilize NSS? Using NSS would give flexibility to create service search descriptors to deal with the Microsoft and Sun deviations in object definition without having to maintain duplicate data to accommodate any version. SSD support would logically be built into nss_ldap framework. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Timo Felbinger Sent: Friday, September 30, 2005 6:50 AM To: [email protected] Subject: Re: [autofs] Autofs LDAP info On Thu, Sep 29, 2005 at 05:28:28PM -0700, Jim Kusznir wrote: > > Hello all: > > I've been tasked with making AutoFS get its maps from a Windows 2003 > Active Directory server via LDAP. I know AutoFS works with LDAP in > some fashon or another, however the documentation seems very sparce, > and information on the net seems very fragmented and contradictory in areas. > > My primary questions at this point: > > What schema(s) does the latest AutoFS support? Does it support > standards such as NisMap? (I've found both "yes" and "no" answers to > this on the net, and no details in either) > > How are maps entered in such schema? > The current stable version of autofs (4.1.4) does support nis.schema and autofs.schema. With the nis.schema, entries must have objectclass "nisObject"; the relevant attributes are "cn" (the mount point, as in the second argument of the mount command) and "nismapentry" (the "automount information": options and first argument of the mount command). If you need greater flexibility (want to use a different schema), or if you need to authenticate to the LDAP server: there is a patch for autofs-4.1.4 to allow this: http://timof.qipc.org/autofs The page also shows some examples. It works for me with an OpenLDAP server. I've never tried it with Windows AD, but I would like to learn whether it does. Regards, Timo Felbinger -- Timo Felbinger <[EMAIL PROTECTED]> Quantum Physics Group http://www.quantum.physik.uni-potsdam.de Institut fuer Physik Tel: +49 331 977 1793 Fax: -1767 Universitaet Potsdam, Germany PGP key-id: E92567B2 _______________________________________________ autofs mailing list [email protected] http://linux.kernel.org/mailman/listinfo/autofs ----------------------------------------- Anadarko Confidentiality Notice: This electronic transmission and any attached documents or other writings are intended only for the person or entity to which it is addressed and may contain information that is privileged, confidential or otherwise protected from disclosure. If you have received this communication in error, please immediately notify sender by return e-mail and destroy the communication. Any disclosure, copying, distribution or the taking of any action concerning the contents of this communication or any attachments by anyone other than the named recipient is strictly prohibited. _______________________________________________ autofs mailing list [email protected] http://linux.kernel.org/mailman/listinfo/autofs
