Please check the FreeIPA training presentation. There are more details for this. TLDR, you will need to create one Python plugin to get this into API/CLI and one Web UI plugin if you also want to extend Web UI. The presentation above has some examples.
On 08/09/2016 02:20 PM, Deepak Dimri wrote: > Ok, got it, Martin > > One more query on this. > > I have extended the ObjectClass under inerorgperson and added the custom > attributes successfully. i could add my newly custom ObjectClass under > "default > user object class" tab of my FreeIPA configuration. But then the question how > do i use these attributes? i dont event see them listed under user identity > profile along with other out of the attributes like first name, address etc.. > > Best Regards, > Deepak > > >> Subject: Re: [Freeipa-users] FreeIPA LDAP Directory Extenion >> To: deepak_di...@hotmail.com; mba...@redhat.com; freeipa-users@redhat.com >> From: mko...@redhat.com >> Date: Tue, 9 Aug 2016 11:10:09 +0200 >> >> Hi Deepak, >> >> This console is not available for regular or shipped with FreeIPA (AFAIK), it >> is only included in the Red Hat Directory Server product. With FreeIPA, you >> will need to extend the schema with CLI tools (ldapmodify) as indicated in >> the >> presentation that Martin Basti shared. >> >> Martin >> >> On 08/09/2016 11:06 AM, Deepak Dimri wrote: >> > Thanks Martin, This helps! >> > >> > i also like this >> > link > https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/9.0/html-single/Administration_Guide/index.html#extending-the-schema >> > >> > would you know how can i access "Directory Server Console" what file i >> > need to >> > run to open it how its given in this document >> > >> > Regards, >> > Deepak >> > >> > >> > ------------------------------------------------------------------------------- >> > Subject: Re: [Freeipa-users] FreeIPA LDAP Directory Extenion >> > To: deepak_di...@hotmail.com; freeipa-users@redhat.com >> > From: mba...@redhat.com >> > Date: Tue, 9 Aug 2016 10:15:47 +0200 >> > >> > >> > >> > >> > On 09.08.2016 10:08, Deepak Dimri wrote: >> > >> > Hi All, >> > >> > I want to extend my FreeIPA Directory Scheme - want to add a new >> > ObjectClass and add few attributes to existing person ObjectClass. I see >> > lot of places it is mentioned i can do it through 389-console command but i >> > dont find it in my freeIPA server. I am getting ObjectClass not found >> > error when trying to add using FreeIPA admin gui configuration tab. Is >> > there any documentarians steps available how schema can be extended in >> > freeIPA using GUI or outside? I am not finding any helpful material on this >> > and hence thought of checking with you all! >> > >> > Thanks, >> > Deepak >> > >> > >> > >> > Hello, >> > >> > please read [pages 6-7] >> > https://www.freeipa.org/images/5/5b/FreeIPA33-extending-freeipa.pdf >> > >> > You should *not* extend IPA objectclasses, you have to create own, >> > otherwise we >> > may and will break your schema during upgrade >> > >> > Martin >> > >> > >> -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
