[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: host schema conflict

To: Seth Faxon <faxons@gmail.com>
Subject: Re: host schema conflict
From: dan <ml@mutox.org>
Date: Tue, 07 Sep 2004 10:50:33 +1000
Cc: openldap-software@OpenLDAP.org
In-reply-to: <2150076804090615181c0b66ab@mail.gmail.com>
References: <2150076804090613132104aca0@mail.gmail.com> <6.1.2.0.0.20040906135205.041e8850@127.0.0.1> <2150076804090615181c0b66ab@mail.gmail.com>

On Mon, 2004-09-06 at 15:18 -0700, Seth Faxon wrote:

> My final concern is that if I create my own host attribute will the
> nss libraries find it or do they look specifically for an account
> objectClass.


nssldap/pam_ldap (I cannot recall which) comes with suitable schemas
called hostObject and authorizedServiceObject.

# $Id: ldapns.schema,v 1.3 2003/05/29 12:57:29 lukeh Exp $
# LDAP Name Service Additional Schema
# http://www.iana.org/assignments/gssapi-service-names
 
attributetype ( 1.3.6.1.4.1.5322.17.2.1 NAME 'authorizedService'
        DESC 'IANA GSS-API authorized service name'
        EQUALITY caseIgnoreMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
 
objectclass ( 1.3.6.1.4.1.5322.17.1.1 NAME 'authorizedServiceObject'
        DESC 'Auxiliary object class for adding authorizedService
attribute'
        SUP top
        AUXILIARY
        MAY authorizedService )
 
objectclass ( 1.3.6.1.4.1.5322.17.1.2 NAME 'hostObject'
        DESC 'Auxiliary object class for adding host attribute'
        SUP top
        AUXILIARY
        MAY host )

Cheers,

Dan

Follow-Ups:
- Re: host schema conflict
  - From: Seth Faxon <faxons@gmail.com>

References:
- host schema conflict
  - From: Seth Faxon <faxons@gmail.com>
- Re: host schema conflict
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: host schema conflict
  - From: Seth Faxon <faxons@gmail.com>

Prev by Date: Re: host schema conflict
Next by Date: Re: Strange behaviour with saslautz: "incorrect" access directives cause segmentation fault
Index(es):
- Chronological
- Thread