[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: host schema conflict
Thank you much - that's what I'm looking for. PAM doesn't seem to be
looking at it right now but I'll tinker with it.
Seth
On Tue, 07 Sep 2004 10:50:33 +1000, dan <ml@mutox.org> wrote:
> On Mon, 2004-09-06 at 15:18 -0700, Seth Faxon wrote:
>
> > My final concern is that if I create my own host attribute will the
> > nss libraries find it or do they look specifically for an account
> > objectClass.
>
>
> nssldap/pam_ldap (I cannot recall which) comes with suitable schemas
> called hostObject and authorizedServiceObject.
>
> # $Id: ldapns.schema,v 1.3 2003/05/29 12:57:29 lukeh Exp $
> # LDAP Name Service Additional Schema
> # http://www.iana.org/assignments/gssapi-service-names
>
> attributetype ( 1.3.6.1.4.1.5322.17.2.1 NAME 'authorizedService'
> DESC 'IANA GSS-API authorized service name'
> EQUALITY caseIgnoreMatch
> SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
>
> objectclass ( 1.3.6.1.4.1.5322.17.1.1 NAME 'authorizedServiceObject'
> DESC 'Auxiliary object class for adding authorizedService
> attribute'
> SUP top
> AUXILIARY
> MAY authorizedService )
>
> objectclass ( 1.3.6.1.4.1.5322.17.1.2 NAME 'hostObject'
> DESC 'Auxiliary object class for adding host attribute'
> SUP top
> AUXILIARY
> MAY host )
>
> Cheers,
>
> Dan
>
>