Simon Matthews via FreeIPA-users wrote:
> I seem to get two entries every time I create new user. This is causing the
> webserver authentication to fail with the message about "User is not unique":
>
> [Tue Jan 11 20:42:16.645046 2022] [authnz_ldap:debug] [pid 21005]
> mod_authnz_ldap.c(505): [c
this is normal (and desirable), the user is added in both users/accounts tree
and the compat tree.
I have had issues with nested groups when I fail to use the compat tree in my
LDAP integrations.
- grant
___
FreeIPA-users mailing list -- freeipa-users@
> Simon Matthews via FreeIPA-users wrote:
>
> Your URL needs to be more specific to find users, like
> cn=users,cn=accounts,dc=...
>
> Or alternatively you could add an objectclass filter, but searching the
> entire tree for users is more work than necessary.
>
> IPA maintains a separate, synthe
> this is normal (and desirable), the user is added in both users/accounts tree
> and the
> compat tree.
If it is normal, it would be nice if the documentation reflected this.
> I have had issues with nested groups when I fail to use the compat tree in my
> LDAP
> integrations.
>
I have probl