Hi I have just started the process of using LDap for my security db, I am using debian etch amd64.
I have a working slapd I have an ou=People,dc=test,dc=com where i have placed entries of the type objectClass: account objectClass: posixAccount objectClass: top which works well for login (linking into pam) Now I am trying to add more attributes, the first being mail but mail isn't part of account nor posixAccount nor top, it is part of inetorgperson - which is of no help to me cause i do libnss/libpam filtering based on attr host which is only part of account. dilema 1 my second hurdle is trying to setup a address book under ou=Address book,dc=test,dc=com I want place address book information here, but I do not want to re enter/have duplicate enters to what I have in the People ou do you use object class alias and how do I get ldapsearch to derefence so for example if I have a record in People dn: uid=alex,ou=People,dc=test,dc=com uid: alex cn: Alexander Samad loginShell: /bin/bash homeDirectory: /home/alex gecos: Alexander Samad objectClass: account objectClass: posixAccount objectClass: top and a record in Address Book dn: uid=alex,ou=Address Book,dc=test,dc=com objectClass: alias objectClass: extensibleObject uid: alex aliasedObjectName: uid=alex,ou=People,dc=test,dc=com so that when I go ldapsearch -b "ou=Address Book,dc=test,dc=com" -x uid=alex I get back the information stored under the People record ? General Question, do most people setup there own schema's or do they have duplicate records 1 for security and 1 for address book information Thanks Alex
signature.asc
Description: Digital signature
-- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html