[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Heimdal/OpenLDAP/Samba howto and bugreport

To: Andrew Bartlett <abartlet@samba.org>, tarjei@nu.no, Love <lha@stacken.kth.se>, heimdal-discuss@sics.se
Subject: Re: Heimdal/OpenLDAP/Samba howto and bugreport
From: =?UTF-8?B?R8OpbWVzIEfDqXph?= <geza@kzsdabas.sulinet.hu>
Date: Sat, 05 Jun 2004 07:46:25 +0200
In-Reply-To: <1086392052.3992.58.camel@piglett.bartlett.house>
References: <1085567567.3321.234.camel@elprinsessekaja.mail.nu.no> <amr7t6f75f.fsf@nutcracker.stacken.kth.se> <1085671043.3320.2434.camel@elprinsessekaja.mail.nu.no> <am65ahsw7u.fsf@nutcracker.stacken.kth.se> <1085743718.3590.224.camel@elprinsessekaja.mail.nu.no> <am1xl38sne.fsf@nutcracker.stacken.kth.se> <1085844153.1553.24.camel@heimen.local> <amu0xwvkt0.fsf@nutcracker.stacken.kth.se> <1086034156.3165.423.camel@elprinsessekaja.mail.nu.no> <amllj6owyt.fsf@nutcracker.stacken.kth.se> <1086363713.3335.107.camel@elprinsessekaja.mail.nu.no> <40C0A512.7080806@kzsdabas.sulinet.hu> <1086371292.3334.165.camel@elprinsessekaja.mail.nu.no> <40C0C556.1050108@kzsdabas.sulinet.hu> <1086392052.3992.58.camel@piglett.bartlett.house>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Mozilla/5.0 (X11; U; Linux i686; hu; rv:1.6) Gecko/20040115


>>>setting ldap:o=skool as the searchdn will find both students and
>>>teachers.
>>>
>>>Tarjei
>>> 
>>>
>>>      
>>>
>>Is the same true for
>>
>>hdb-ldap-create-base
>>
>>too?
>>Thanks
>>Geza
>>    
>>
>
>Heimdal is not a user administration tool.  It is a kerberos server, and
>the reason you are using OpenLDAP, is to allow other (more suitable)
>tools to be your user administration tools.  
>
>So, the answer is to simply create your users with some other tool, and
>have heimdal set kerberos keys on the existing entry.  The
>hdb-ldap-create-base should perhaps never be used - but for things like
>a 'init MY.REALM' in kadmin -l, it's useful to put these somewhere other
>than the root.  
>
>Andrew Bartlett
>
>  
>
That's quite clear, however in the given example of having users in 
different organizational units shall I need to use as the 
hdb-ldab-create-base parameter the basedn of the ldap server for init 
MY.REALM or shall I init it multiple times.

Thanks

Geza Gemes

Follow-Ups:
- Re: Heimdal/OpenLDAP/Samba howto and bugreport
  - From: Andrew Bartlett <abartlet@samba.org>
- Re: Heimdal/OpenLDAP/Samba howto and bugreport
  - From: Love <lha@stacken.kth.se>

References:
- Re: Heimdal/OpenLDAP/Samba howto and bugreport
  - From: Love <lha@stacken.kth.se>
- Re: Heimdal/OpenLDAP/Samba howto and bugreport
  - From: Tarjei Huse <tarjei@nu.no>
- Re: Heimdal/OpenLDAP/Samba howto and bugreport
  - From: Gémes Géza <geza@kzsdabas.sulinet.hu>
- Re: Heimdal/OpenLDAP/Samba howto and bugreport
  - From: Tarjei Huse <tarjei@nu.no>
- Re: Heimdal/OpenLDAP/Samba howto and bugreport
  - From: Gémes Géza <geza@kzsdabas.sulinet.hu>
- Re: Heimdal/OpenLDAP/Samba howto and bugreport
  - From: Andrew Bartlett <abartlet@samba.org>

Prev by Date: kadmin getting incorrect domain name.
Next by Date: Re: Heimdal/OpenLDAP/Samba howto and bugreport
Prev by thread: Re: Heimdal/OpenLDAP/Samba howto and bugreport
Next by thread: Re: Heimdal/OpenLDAP/Samba howto and bugreport
Index(es):
- Date
- Thread