[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...

To: Everette Gray Allen <Everette_Allen@ncsu.edu>
Subject: Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
From: Wesley D Craig <wes@umich.edu>
Date: Tue, 25 Nov 2003 19:41:50 -0500
Cc: openldap-software@OpenLDAP.org
In-reply-to: <81342634.1069774842@cadabra.stanford.edu>
References: <001201c3adb7$7d9a4af0$1801a8c0@CELLO> <EBA2A2BD-19D6-11D8-A72D-000393C8123C@octetstring.com> <3FC3B03D.1060200@ncsu.edu> <68298748.1069761798@cadabra.stanford.edu> <3FC3CE1E.9030207@ncsu.edu> <75270613.1069768770@cadabra.stanford.edu> <3FC3D382.7030404@ncsu.edu> <76779102.1069770278@cadabra.stanford.edu> <3FC3E288.5020605@ncsu.edu> <80569592.1069774069@cadabra.stanford.edu> <81342634.1069774842@cadabra.stanford.edu>

On 25 Nov 2003, at 18:40, Quanah Gibson-Mount wrote:

Essentially, if we get such a request, we simply blank out their name to a "'". That fulfills the requirement, and allows us to continue to expose posixAccount.

We leave the 'cn' alone, but set a flag (FERPA) to True. This causes the server to return 'cn' (and other personal information) only to the bound user or certain administrative users. The lack of 'cn' has no effect on Mac OS X's use of posixAccount, nor any other implementation that I have experience with. I suspect that MUST 'cn' is a bug in the definition of posixAccount -- it doesn't really make sense that it's required. I can see why 'cn' is MUST for posixGroup. Does the password file require a name?

:wes

References:
- RE: OpenLDAP on OSX?
  - From: "Howard Chu" <hyc@symas.com>
- Re: OpenLDAP on OSX?
  - From: Marc Boorshtein <marc.boorshtein@octetstring.com>
- MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Everette Gray Allen <Everette_Allen@ncsu.edu>
- Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Quanah Gibson-Mount <quanah@stanford.edu>
- Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Everette Gray Allen <Everette_Allen@ncsu.edu>
- Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Quanah Gibson-Mount <quanah@stanford.edu>
- Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Everette Gray Allen <Everette_Allen@ncsu.edu>
- Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Quanah Gibson-Mount <quanah@stanford.edu>
- Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Everette Gray Allen <Everette_Allen@ncsu.edu>
- Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Quanah Gibson-Mount <quanah@stanford.edu>
- Re: MacOS X logins very, very slow or failing with Openldap 2.1.23...
  - From: Quanah Gibson-Mount <quanah@stanford.edu>

Prev by Date: BerkeleyDB 4.2.50 release
Next by Date: Memory Leak
Index(es):
- Chronological
- Thread