I am also using custom schema and in my case I had to define the
following 2 options for sssd to be able to 'see' them:
ldap_group_member
ldap_user_member_of
I imagine you have specific attributes you need to search/filter which
are != than objectclass ?
Mario
On 12/20/2016 07:10 AM, Manind
On Tue, Dec 20, 2016 at 12:10:28PM +, Maninder Singh wrote:
> Hi,
>
> Please find the below sssd.conf. We are seeing below in LDAP logs:
>
> SRCH base="dc=mydomain,dc=com" scope=2 deref=0
> filter="(&(uid=gdm)(objectClass=posixAccount)(&(uidNumber=*)(!(uidNumber=0"
> conn=3410 op=2 SRCH
Hi,
Please find the below sssd.conf. We are seeing below in LDAP logs:
SRCH base="dc=mydomain,dc=com" scope=2 deref=0
filter="(&(uid=gdm)(objectClass=posixAccount)(&(uidNumber=*)(!(uidNumber=0"
conn=3410 op=2 SRCH attr=objectClass uid userPassword uidNumber gidNumber gecos
homeDirectory log
On Mon, Dec 19, 2016 at 11:07:52AM -0600, jsl6uy js16uy wrote:
> Would you have any other ideas on why, even with leveraging ad as the
> provider, samba can not see into AD groups to use in valid users for
> restricting share access?
>
> as always thanks for the help
> regards
>
> On Fri, Dec 16,
