[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap queries for group membership (was: Too many slapd processes)



On Tue, Jan 07, 2003 at 03:55:03PM +0100, Thomas Rahn wrote:

> I've tracked down my problem and found out why I get so many ldap queries. 
> 
> User authentication works fine. Information for passwd and shadow is taken from the flat files only if an appropriate entry exists. Group information though is always gathered from the flat files AND the LDAP directory even if an entry exists in /etc/group. Doesn't this contradict to the default behaviour in nsswitch.conf which is [SUCCESS=return]. Is there a way to stop the clients from looking up ALL the groups in the directory? What I need is something like
> 
> group files [SUCCESS=return] ldap
> 
> But this doesn't do the trick.
> Any hints?

This is not really an OpenLDAP issue any more. I think you will get
more help by posting it to nssldap@padl.com

Andrew
-- 
-----------------------------------------------------------------------
|                 From Andrew Findlay, Skills 1st Ltd                 |
| Consultant in large-scale systems, networks, and directory services |
|     http://www.skills-1st.co.uk/                +44 1628 782565     |
-----------------------------------------------------------------------