[Freeipa-users] Doubt on FreeIPA LDAP extensibility
Marco Pizzoli
marco.pizzoli at gmail.com
Sun Mar 18 12:59:08 UTC 2012
Hi Simo,
On Sat, Mar 17, 2012 at 7:16 PM, Simo Sorce <simo at redhat.com> wrote:
> On Sat, 2012-03-17 at 11:12 +0100, Marco Pizzoli wrote:
> > Hi guys,
> >
> > I extended my set of LDAP objectClasses associated to users by adding
> > my new objectClass to my cn=ipaConfig LDAP entry, the
> > ipaUserObjectClasses attribute.
> > Then, I created a new user with the web ui and I see the new
> > objectClass associated with that user, but as structural instead of
> > auxiliary. I don't know why, could you help me?
> >
> > Same thing happened for my groups. I added 3 objectClasses and now I
> > see all of them as structural. I would understand an answer: all
> > objectClasses eventually result as structural, but so why, for
> > example, the ipaObject is still an auxiliary objectClass?
>
> The objectClass type depends on the schema. It is not something that
> changes after you assign it to an object.
>
Yes, your answer surely does make sense.
My question was triggered by the fact that, AFAICS, not all objectClasses
are structural as well.
In fact I can see that, for my group object, the objectClass "ipaobject"
has been defined as auxiliary, while others structural.
For users, I see that *only my objectClass* is defined as structural. All
others as auxiliary.
In attachment you can see 2 images that immediately represent what I'm
trying to explain.
If this was the intended behaviour, I would be really interested in knowing
what is the rationale behind this.
Only curiousity, as usual :-)
Thanks again for your patience!
Marco
> Simo.
>
> --
> Simo Sorce * Red Hat, Inc * New York
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120318/521d7ac7/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: User_objectClasses.PNG
Type: image/png
Size: 22071 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120318/521d7ac7/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Group_objectClasses.PNG
Type: image/png
Size: 15950 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120318/521d7ac7/attachment-0001.png>
More information about the Freeipa-users
mailing list