----- "Andy Kannberg" <andy.kannb...@gmail.com> wrote: > Goodmorning, > > I did some digging, and this is the situation: > Upfront I must say that I do not know yet if Novell eDirectory is > RFC2307 > compliant, but a Novell Engineer is available today so I can ask him > straight away. > > Anyway, this is what i've found out: > > the objectclass 'posixAccount' does exist. But it is, as far as I > could see, > not mapped to the useraccount. > However, in the /etc/ldap.conf, I see this: > > # attribute/objectclass mapping > nss_map_objectclass posixAccount NxpUserAuxClass > nss_map_objectclass posixGroup NxpGroupAuxClass > pam_login_attribute cn > > And, if you look at the info from a random selected account: > > objectClass: inetOrgPerson > objectClass: NxpUserAuxClass > objectClass: organizationalPerson > objectClass: Person > objectClass: ndsLoginProperties > objectClass: Top > objectClass: krbForeignPrincipalAux > objectClass: srvprvEntityAux > objectClass: sambaSamAccount > > you see the NxpUserAuxClass as objectclass for the useraccount. > > Is there a way to handle this in SSSD ?
Yes look in the sssd-ldap man page for details. posixAccount can be remapped by specifying a custom ldap_user_object_class Simo. _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel
