Hi, Sorry for this slightly off-topic question. Private answers greatly appreciated.
I'm using LSC to synchronize AD users in OpenLDAP. I'm testing some ldapsearch queries to the domain controllers to make sure everything will work great. Let's take an example. I have a user : user1. On my domain controllers, I see in the "member of" properties tab that it belongs to the following groups : "Domain users" and "Group1". I see that the principal group of this user is "Domain users". I was thinking that making a query to show the groups of this user will show : memberof : CN=Domain users,... and memberof : CN=Group1,... But, to my surprise, it only shows : memberof : CN=Group1,... Modifying the user's principal Group to Group1 results in the following : memberof : CN=Domain users,... If I want to have : memberof : CN=Domain users,... and memberof : CN=Group1,... I will have to add a third group and make it principal group for that user. I find it very strange. What's your opinion about this ? Am I the only one seeing this behaviour ? Does one know any workaround ? Thanks really for reading and answering if possible and sorry for the noise of this almost off-topic question. -- Emmanuel Lesouef CRBN/DSI/SITI t: 0231069671 e: [email protected] _______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] http://lists.lsc-project.org/listinfo/lsc-users
