AW: OpenLDAP and Solaris 10 - group problem

["Kick, Claus" <claus.kick@siemens.com>]

Von: Buchan Milne [mailto:bgmilne@staff.telkomsa.net] 
Gesendet: Montag, 28. Januar 2008 09:47
An: openldap-technical@openldap.org
Cc: Michael Ströder; Kick, Claus
Betreff: Re: OpenLDAP and Solaris 10 - group problem

On Saturday 26 January 2008 17:12:15 Michael Ströder wrote:
> Kick, Claus wrote:
> > we are trying to use OpenLDAP to provide user management for a CMS. The
> > CMS relies on OS groups to manage directory branch- and file-access.
> >
> > We are using the following group structure:
> >
> > dn: cn=ts_de_de_gg_ax, ou=Group, o=**********
> > gidNumber: 1400
> > memberUid: uid=tsmaster, ou=People, o=**********
> >
>  > [..]
>
> The attribute 'memberUid' is not meant for storing DNs of entries.
> Rather it is supposed to contain the value of attribute 'uidNumber' of
> the member's entry.

No, not uidNumber, uid!

>
> > uidNumber: 3618
>
> Store this value in 'memberUid'.

No, this one:

> > uid: osteholdap

Hello Buchan,

So you mean storing the reference between user and group like this:

dn: cn=ts_de_de_rg_cs, ou=Group, o=***************
gidNumber: 11502
memberUid: tsmaster
memberUid: osteholdap
objectClass: posixGroup
objectClass: top
cn: ts_de_de_rg_cs

Instead of:

dn: cn=ts_de_de_rg_cs, ou=Group, o=***************
gidNumber: 11502
memberUid: 3618
objectClass: posixGroup
objectClass: top
cn: ts_de_de_rg_cs.

Do I understand you correctly?

Regards from Europe,

Claus