i guess an easy way to fix this w/out changing your structure is to use
slapd ACLs, that prohibit access to other domains for the first samba
manager instance (e.g. uid=manager,ou=People,dc=univ,dc=fr).
greez
Didier Roques wrote:
the organization is:
1)ou=People,dc=univ,dc=fr (the first doma
>the organization is:
>1)ou=People,dc=univ,dc=fr (the first domain)
>
>
And your answer is here! dc=univ,dc=fr includes EVERYTHING - domain2 and
domain3 and of course People,Groups from the top of LDAP tree.
>2)ou=People,ou=domain2,dc=univ,dc=fr
>
>
This for example consists ONLY with EVERYTHING
Didier Roques napisał(a):
Didier Roques napisał(a):
Hi all,
Hello,
I use samba 3.0.20
the ldap paramaters into the smb.conf are:
passdb backend = ldapsam:ldap://localhost smbpasswd guest
ldap suffix = dc=univ,dc=fr
ldap machine suffix = ou=Hosts
ldap user suffix = ou=People
> Didier Roques napisaÅ(a):
>> Hi all,
>>
> Hello,
>> I use samba 3.0.20
>>
>> the ldap paramaters into the smb.conf are:
>> passdb backend = ldapsam:ldap://localhost smbpasswd guest
>> ldap suffix = dc=univ,dc=fr
>> ldap machine suffix = ou=Hosts
>> ldap user suffix = ou=People
>> ldap group suf
Didier Roques napisał(a):
Hi all,
Hello,
I use samba 3.0.20
the ldap paramaters into the smb.conf are:
passdb backend = ldapsam:ldap://localhost smbpasswd guest
ldap suffix = dc=univ,dc=fr
ldap machine suffix = ou=Hosts
ldap user suffix = ou=People
ldap group suffix = ou=Group
ldap idmap su
Hi all,
I use samba 3.0.20
the ldap paramaters into the smb.conf are:
passdb backend = ldapsam:ldap://localhost smbpasswd guest
ldap suffix = dc=univ,dc=fr
ldap machine suffix = ou=Hosts
ldap user suffix = ou=People
ldap group suffix = ou=Group
ldap idmap suffix = ou=Idmap
Into my ldap tree i've