On Thursday 02 April 2015 16:16:51 Kostas Mitrogeorgos wrote: > Hello to all, > > Is it possible to limit access to users belong to certain group, when > group membership is based on the memberUid attribute? Our LDAP > implements group memberships by having groups like > > cn=groupname,ou=groups,dc=cs,dc=example,dc=com > > with each group being a posixGroup and including a memberUid attribute > which lists all the users (by uid) belonging to that group. Users' > account info is stored in another subtree, > > uid=username,ou=people,dc=cs,dc=example,dc=com > > and is of objectClass= top, inetOrgPerson posixAccount, shadowAccount. > > Lastly, our LDAP implementation doesn't support the member-of-overlay.
That's the thing. Currently you need the member-of-overlay as we require group memberships information provided by the user entry. I.e. Having the information just at the group by memberUId is not sufficient. Cheers Arthur > > So, rephrase the original question, is it possible to filter users by > memberUid, when user info is stored in another subtree? > > Thanks -- A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? XMPP: [email protected] www.owncloud.com - Your Data, Your Cloud, Your Way! ownCloud GmbH, GF: Markus Rex, Holger Dyroff, Frank Karlitschek Schloßäckerstrasse 26a, 90443 Nürnberg, HRB 28050 (AG Nürnberg)
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ User mailing list [email protected] http://mailman.owncloud.org/mailman/listinfo/user
