On 17 Oct 2008, at 18:49, Jason Vas Dias wrote:
What confused me is that when I list user objects their DNs all
print out as
"cn=$user_name,uid=$user_id,o=att.com" ;
I thought that "cn" is just an attribute as is "uid", and by
definition, when creating
a new object, the object that contains cn and uid does not exist ?
So I still don't
quite understand the difference.
Remember the directory is a tree of nodes. The DN of an entry is
formed by traversing the tree from the entry back up to the top
(root), and each time you go "up" the tree, the DN gains a ",".
So "o=att.com" is an entry directly under the root.
So "uid=foo,o=att.com" is an entry directly under the "o=att.com"
entry, and that entry has a uid attribute, and some other attributes.
So "cn=jason,uid=foo,o=att.com" is an entry directly under the
"uid=foo,o=att.com" entry, and *that* entry has a cn attribute and
some other attributes.
You can't create "cn=jason,uid=foo,o=att.com" before the
"uid=foo,o=att.com" entry exists. They are two different entries - the
parent must exist before the child!
I think Graham's clarified the rest of your confusion :-)
Cheers,
Chris
