[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Does everybody end up writing their own directory management programs?

To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: Re: Does everybody end up writing their own directory management programs?
From: Shawn McKinney <smckinney@symas.com>
Date: Mon, 19 Sep 2016 07:01:03 -0500
In-reply-to: <WM!753c21803a6e3e2fc09f29c963fc4d498caacb3730d45f82e1b4a63aeadeda347006bbbe287eda863d08e0af813fbf5d!@mailstronghold-1.zmailcloud.com>
References: <71356e9c-3078-c770-5fd9-ecfe42cee625@gmail.com> <WM!753c21803a6e3e2fc09f29c963fc4d498caacb3730d45f82e1b4a63aeadeda347006bbbe287eda863d08e0af813fbf5d!@mailstronghold-1.zmailcloud.com>

> On Sep 18, 2016, at 2:25 PM, John Lewis <oflameo2@gmail.com> wrote:
> 
> Right now I am trying to weigh my options for maintaining my POSIX
> accounts on an OpenLDAP tree.
> 
> I learned today that ldap templates in ldapscripts really don't work, so
> if I want to go on using ldapscripts, I would have to run ldapmodify
> after every account is created to get the gecos configured properly and
> have a kerberos principal configured.

You could use an IdM product like midPoint to manage the RFC2307ish attributes in the directory.

https://wiki.evolveum.com/display/midPoint/LDAP+PosixAccount+and+PosixGroup+Management

Follow-Ups:
- Re: Does everybody end up writing their own directory management programs?
  - From: Saša-Stjepan Bakša <ssbaksa@gmail.com>

References:
- Does everybody end up writing their own directory management programs?
  - From: John Lewis <oflameo2@gmail.com>

Prev by Date: Re: Enable memberOf
Next by Date: do_syncrep2: rid=001 (32) No such object
Index(es):
- Chronological
- Thread