Hi, our company uses Novell eDirectory for user management, file and print services and some other stuff. Almost all client machines are PCs with Windows XP, and AFAICT eDirectory isn't set up for non-Windows systems.
I have a test server under my desk running Solaris 11 Express that I'm trying to connect to eDirectory so that all users contained in a certain sub-tree can log in into the server if necessary. By following the docs on Oracle's website (System Administration Guide: Naming and Directory Services) and some man pages I finally managed to create the connection to the LDAP server: "ldaplist" lists all the users in the tree, I can finger them, "getent passwd <...>", "id <..>" or "groups <...>" print results etc. But: The LDAP user entries don't use the object classes "posixAccount" or "posixGroup" that are mentioned in the docs. I had to map some of the expected attributes which otherwise would be missing, i.e. user Id, group Id and full name, to other attributes in the LDAP such as employee Id that I can abuse for that. Unfortunately there's no counterpart for home directory and/or the login shell so that logging in with my Novell account results in using /usr/bin/sh with home directory set to "/". Is it possible to let the Solaris LDAP client use other default values for these attributes? For example /export/home/<Novell Id> as home directory for each account and /usr/bin/bash as shell. Regards Thorsten -- This message posted from opensolaris.org _______________________________________________ opensolaris-help mailing list opensolaris-help@opensolaris.org
