[Fedora-directory-users] Questions regarding the Alias Attribute for OU's and ldapsearch
J. Hartman
joona.hartman at gmail.com
Tue May 29 08:10:10 UTC 2007
On 5/25/07, Anderson, Cary <Cary_Anderson at calpers.ca.gov> wrote:
> I am trying to get a handle on using the alias attribute for OU's to set
> up something like this:
>
> ou=posixacct, ou=account, dc=calpers, dc=ca, dc=gov
> And have the following ou be an alias to the one I have above
> ou=people, dc=calpers, dc=ca, dc=gov
>
> I thought that if I included ou=posixacct, ou=account, dc=calpers,
> dc=ca, dc=gov in the alias attribute of the ou=people this would be
> correct.
>
> However I don't seem to be able to find any users when I do an
> ldapsearch of the ou people. Am I not setting up my ldapsearch
> correctly? ldapsearch -x "(&(ou=people)(uid=*))"
>
> I actually think I may not be using the correct syntax for ldapsearch
> because a search using ldapsearch -x "(&(ou=posixacct)(uid=*)" also does
> not return any of my uid's, the most basic ldapsearch does work,
> ldapsearch -x uid=*, but that is searching the entire tree...
>
> I could use some assistance in if I setup the alias correctly and what
> may be wrong with how I am using ldapsearch.
Both your searches are semantically wrong. They are looking for
objects that have attributes ou=something and uid="anything". What you
want to achieve I guess is to look for objects that are under
ou=people branch. You can do that by using extensible matching:
(ou:dn:=people) or (ou:dn:=posixacct). The other (simple) way of doing
this is to set the search base: ldapsearch -x -b "ou=account,
dc=calpers, dc=ca, dc=gov" "(uid=*)"
> Thanks
>
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
More information about the Fedora-directory-users
mailing list