Hi Serge,
if the accounts look identical and the admins are the same then one
server profile with one user type should be fine. If you see later that
there are differences then you can also create additional user types
(with e.g. separate suffixes).
When you create a user then LAM allows you to select the OU where to
store it. There are also account profiles (see tools menu) where this
can be preselected.
You can create additional OUs in OU Editor. This can be found in the
tools menu inside LAM.
Best regards
Roland
Am 04.08.25 um 23:04 schrieb Serge Cohen:
Hello list,
I’m brand new to usage of LAM. I have installed it (through Nginx + PHP-FPM) on
a small LDAP server to be able to perform some configuration using a
web/graphical interface rather than going on with tedious scripting.
But it is not really clear to me how to use LAM with my setting.
Concerning my user entries, the current hierarchy of the LDAP is as follows
(obviously, best seen in a monospace font):
dn=domain,dn=name,dn=org (indeed, something else, but of no relevance here)
+-- ou=people (an organizational unit in which all accounts are)
+-- ou=dept1 (a first department)
| --- cn=user1
| --- cn=user2
| .....
+-- ou=dept2 (a second dept., bigger)
+-- ou=team1 (1st team of department 2)
| --- cn=userXX
| .....
+-- ou=team2 (2nd team of department 2)
--- cn=userYY
I have the impression I have to configure one profile for each type of user, so
that their base DN is complete. In other words, I have the feeling I have to
configure:
Profile 1: base DN: ou=dept1,ou=people,dn=domain,dn=name,dn=org
Profile 2: base DN: ou=team1,ou=dept2,ou=people,dn=domain,dn=name,dn=org
Profile 3: base DN: ou=team2,ou=dept2,ou=people,dn=domain,dn=name,dn=org
This seems tedious to me, especially since I have a couple of extra other ou
(under ou=people,dn=domain,dn=name,dn=org) and indeed all these accounts should
(except for their base DN) be rather identical in terms of configuration.
What am I missing?
Another (but related) question: is it possible to create some of the
intermediate ou within LAM, or should I turn to ‘pure LDAP’ for this purpose?
Thanks in advance for any pointer or help!
Serge.
Dans la mesure du possible, merci de m'écrire à / Please use following email
address : [email protected]
+++++++++++++++++++++++++++++++++++++++++
Serge Cohen
GPG Key ID: 5EC8 9F9C 621C FB28 99C2 97F8 9FBF E736 0DD8 7322
IPANEMA UAR3461 CNRS/MiC/UVSQ/MNHN
web : http://ipanema.cnrs.fr
https://cv.archives-ouvertes.fr/sergecohen
+++++++++++++++++++++++++++++++++++++++++
_______________________________________________
Lam-public mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/lam-public
_______________________________________________
Lam-public mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/lam-public
