[Freeipa-users] ipa user-add, two entries in the ldap
Petr Spacek
pspacek at redhat.com
Fri May 13 14:15:40 UTC 2016
On 13.5.2016 16:10, bahan w wrote:
> Please ignore the character "-" in <my-realm>.
>
> On Fri, May 13, 2016 at 4:09 PM, bahan w <bahanw042014 at gmail.com> wrote:
>
>> Hello !
>>
>> I performed recently an ipa user-add for a new user and when I check in
>> the ldap, I can see two entries for it :
>> - One in uid=<myuser>,cn=users,cn=compat,dc=<my-realm>
>> - One in uid=<myuser>,cn=users,cn=accounts,dc=<myrealm>
>>
>> Is it normal ?
>> I know that my user is the one defined in the tree
>> cn=users,cn=accounts,dc=<myrealm>.
>>
>> What is exactly the entry in cn=users,cn=compat,dc=<my-realm> please ?
This is auto-generated entry which is used for old clients:
See
http://www.freeipa.org/page/HowTo/LDAP#Unix_clients
and
man ipa-compat-manage
--
Petr^2 Spacek
More information about the Freeipa-users
mailing list