[Freeipa-users] vSphere and freeIPA
Rob Crittenden
rcritten at redhat.com
Thu Jun 4 14:36:11 UTC 2015
Rees wrote:
> If I applied the original vsphere_groupmod.ldif (with the %regsub()) is
> there anything special I have to do to reapply the modification?
>
> When I attempt to apply this ldif i just get an error message telling me
> "type or value exists" and then when I run the steps you have, (creating
> users, groups, assigning them to the group and then doing the search) i
> don't get the uniqueMember attribute.
> Only after I remove all but one users from the group does the ldapsearch
> returns a uniqueMember attribute.
The ldif is for _adding_ values. You need to modify one, so you'll need
to tweak the ldif.
rob
>
> Cheers,
>
> Rees
> On 2/06/2015 5:55 pm, Alexander Bokovoy wrote:
>> On Tue, 02 Jun 2015, Martin Kosek wrote:
>>> CCing Nalin and Alexander. This sounds like the slapi-nis
>>> configuration for generating uniqueMember attribute does not work
>>> with multi-valued "member" attribute:
>>>
>>> schema-compat-entry-attribute:
>>> uniqueMember=%mregsub("%{member}","^(.*)accounts(.*)","%1compat%2")
>> No, this should work just fine. The original wiki page had just
>> %regsub() which is indeed a single element replacement. %mregsub()
>> processes multiple possible expression matching.
>>
>
>
More information about the Freeipa-users
mailing list