Hi Benjamin, On Wed, Jul 9, 2008 at 10:12 AM, Benjamin Henne <[EMAIL PROTECTED]> wrote: > > in conjunction with attribute-based authorization we think about an 1:n > mapping of attributes (primary VOMS attributes, maybe SAML in future) to > local user accounts. The current VOMS and GridShib authz can only do a 1:1 > mapping of an attribute to a local account. We want to have the possibility > to map a group of users with the same attributes to different local (pool) > accounts instead of sharing one account with multiple users.
I'd like to understand your use case a little better. Does each user require an unique account? Are these accounts created ahead of time or are dynamic accounts required? Thanks, Tom
