Dne 20.1.2012 21:15, Rob Crittenden napsal(a):
macaddress is a multi-valued attribute and we allow multiple entries.
This is from the objectclass ieee802device. This is added manually when
doing a mod or add and not as a default to support existing host entries
that do not have this objectclass. If this were added to the defaults
then existing hosts missing this objectclass would not be found by
host-find.

It is possible to get ethers data out of nss by configuring
nsswitch.conf to use ldap for ethers and running getent ethers <hostname>

I tested nslcd and it only returned one macaddress value. I don't know
if this is a deficiency in nslcd or expected behavior.

https://fedorahosted.org/freeipa/ticket/1132

rob


@@ -442,6 +448,7 @@ class host_add(LDAPCreate):
             x509.verify_cert_subject(ldap, keys[-1], cert)
             entry_attrs['usercertificate'] = cert
         entry_attrs['managedby'] = dn
+        entry_attrs['objectclass'].append('ieee802device')
         return dn

     def post_callback(self, ldap, dn, entry_attrs, *keys, **options):

Why do you add the objectclass here instead of adding it to host plugin's object_class attribute?

Honza

--
Jan Cholasta

_______________________________________________
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel

Reply via email to