[Freeipa-users] SSS problems with eDirectory
Dmitri Pal
dpal at redhat.com
Thu Jul 22 22:21:58 UTC 2010
Simo Sorce wrote:
> On Thu, 22 Jul 2010 17:59:03 -0400
> Dmitri Pal <dpal at redhat.com> wrote:
>
>
>> [snip]
>>
>>> Uhmmm this may be a side effect of your directory not having
>>> memberof I think we need to add special code to handle servers that
>>> use rfc2307bis schema but that do not use memberof.
>>>
>>>
>>>
>> Are we sure that this is the case?
>> Is there any chance we can get a schema file that shows what is the
>> schema used on the server?
>> May be it is one of the early drafts of the rfc2307bis that is
>> implemented in the server?
>>
>> I think the ldapsearch results listing any one user and a group he is
>> a member in your server of will be very helpful.
>>
>>
>
> memberof is not required by rfc2307bis. Actually it is not even
> mentioned by rfc2307bis, so it is our fault if we depend on it.
>
> rfc2307bis actually mentions only uniquemember.
>
>
I agree that if this is the case we definitely have a bug that we need
to fix.
But a confirmation that this is actually the case in the LDAP server in
question is needed for us to test and verify the fix.
> Simo.
>
>
--
Thank you,
Dmitri Pal
Engineering Manager IPA project,
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
More information about the Freeipa-users
mailing list