On 10/07/2013 12:32 PM, Tamas Papp wrote: > On 10/07/2013 06:06 PM, Tamas Papp wrote: >> hi All, >> >> I have a fedora directory server with memberOf attributes. >> I'm able to migrate users to Freeipa, but I can see there are no such >> attributes at the new place. >> If I understand correctly, a memberOf plugin should be enabled. How can >> I do that? > I wasn't correct here. > > This works: > # ldapsearch -Y GSSAPI 2>/dev/null |grep memberOf|wc -l > 2424 > > > This not: > # ldapsearch -x 2>/dev/null |grep memberOf|wc -l > 0 > > > I miss something, but I don't know, what. I'm not really an ldap or IPA > expert, please give me some advise:)
With anonymous bind you do not see any data. With GSSAPI you authenticate and thus entitled to see what you are looking for. > > Thanks, > tamas > > _______________________________________________ > Freeipa-users mailing list > Freeipa-users@redhat.com > https://www.redhat.com/mailman/listinfo/freeipa-users -- Thank you, Dmitri Pal Sr. Engineering Manager for IdM portfolio Red Hat Inc. ------------------------------- Looking to carve out IT costs? www.redhat.com/carveoutcosts/ _______________________________________________ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users