[Freeipa-users] Non-human users
Orion Poplawski
orion at cora.nwra.com
Fri Feb 15 20:57:39 UTC 2013
On 02/15/2013 01:56 PM, John Dennis wrote:
> On 02/15/2013 03:46 PM, Simo Sorce wrote:
>> This is an interesting use case, it would probably be appropriate to
>> have a RFE filed to allow to create ipa users marked as 'non-person' so
>> that they are not assigned the person objectclass.
>
> Yes, that addresses one large component of the problem. But the part of the
> requirement is not to have non-humans show up in every client (e.g. mail
> clients) that support LDAP directory lookups. That means they have to modify
> the filter on every client. That's a tall order :-(
>
Actually, this would cover it. The LDAP address book searches look for
attributes that the *person objectclasses provide. Without them, they are
excluded.
--
Orion Poplawski
Technical Manager 303-415-9701 x222
NWRA, Boulder Office FAX: 303-415-9702
3380 Mitchell Lane orion at nwra.com
Boulder, CO 80301 http://www.nwra.com
More information about the Freeipa-users
mailing list