|
»
»
eDir w/ AIX
|
View:
New views
3 Messages
—
Rating Filter:
Alert me
|
 |
eDir w/ AIX
by Mark.Merchant
::
Rate this Message:
Is anyone running against Novell's eDir?
We've run up against a strange
issue. It appears that eDir does a schema check against incoming queries. I've never seen a directory do that before. Any ideas on how to get around it? Thx. Mark Merchant Unix Systems Admin, Huntington Banks 7 Easton Oval, Cols, Oh 43219 tel:614-331-9806 cel:614-917-8218 pag:614-917-8218 How quickly daft jumping zebras vex. |
||||||||||
|
|
|
| From: | "Gary Bennett" <benngl@...> |
| To: | <Mark.Merchant@...> |
| Date: | 09/11/2009 11:14 AM |
| Subject: | Re: [pamldap] eDir w/ AIX |
Mark, do you have to run nss_ldap for AIX to auth against other sources? We've had issues w/compiling on 5.3 or 6.1. TIA.
gary
gary bennett
shands hospital at uf
information services
>>> <Mark.Merchant@...> 9/11/2009 9:18 AM >>>
Is anyone running against Novell's eDir? We've run up against a strange
issue. It appears that eDir does a schema check against incoming queries.
I've never seen a directory do that before. Any ideas on how to get around
it?
Thx.
Mark Merchant
Unix Systems Admin, Huntington Banks
7 Easton Oval, Cols, Oh 43219
tel:614-331-9806 cel:614-917-8218 pag:614-917-8218
How quickly daft jumping zebras vex.
RE: eDir w/ AIX
by Mark.Merchant
::
Rate this Message:
> We don't want the native stuff, b/c
it requires managing users w/support in
> the remote schema. We were simply wanting to do LDAP auth and still manage
> users/groups locally on AIX. Only way we can find to do this is via nss_ldap.
> More's the pity...
Local group management was our original idea too, but AIX has not been cooperative.
Mark Merchant
Unix Systems Admin, Huntington Banks
7 Easton Oval, Cols, Oh 43219
tel:614-331-9806 cel:614-917-8218 pag:614-917-8218
How quickly daft jumping zebras vex.
We don't want the native stuff, b/c it requires managing users w/support in the remote schema. We were simply wanting to do LDAP auth and still manage users/groups locally on AIX. Only way we can find to do this is via nss_ldap. More's the pity...
>>> Kyle Chapman <Kyle.Chapman@...> 9/11/2009 12:35 PM >>>
i have on 5.3 and down, though after tl5 with 5.3 i use the native stuff to talk to ad or openldap.
________________________________
From: owner-pamldap@... [owner-pamldap@...] On Behalf Of Mark.Merchant@...
Sent: Friday, September 11, 2009 11:27 AM
To: Gary Bennett
Cc: pamldap@...
Subject: Re: [pamldap] eDir w/ AIX
Yes, we had issues compiling nss_ldap on AIX, so we're using the native stuff.
The problem is that AIX produces a query that looks something like this:
(&(objectclass=posixgroup)\
(|(member=cn=hb92657,ou=aix,ou=unix,ou=datacenter,ou=hnbauth)(member=hb92657)))
Which eDir rejects because the last member= clause is not formatted like a dn
It's a little off topic for this list, I was just wondering if anyone was using eDir or another
directory where schema checking is enforced on the query.
Thx.
p.s. if anyone has gotten a clean compile on AIX, I'd love know how ;)
Mark Merchant
Unix Systems Admin, Huntington Banks
7 Easton Oval, Cols, Oh 43219
tel:614-331-9806 cel:614-917-8218 pag:614-917-8218
How quickly daft jumping zebras vex.
From: "Gary Bennett" <benngl@...>
To: <Mark.Merchant@...>
Date: 09/11/2009 11:14 AM
Subject: Re: [pamldap] eDir w/ AIX
________________________________
Mark, do you have to run nss_ldap for AIX to auth against other sources? We've had issues w/compiling on 5.3 or 6.1. TIA.
gary
gary bennett
shands hospital at uf
information services
>>> <Mark.Merchant@...> 9/11/2009 9:18 AM >>>
Is anyone running against Novell's eDir? We've run up against a strange
issue. It appears that eDir does a schema check against incoming queries.
I've never seen a directory do that before. Any ideas on how to get around
it?
Thx.
Mark Merchant
Unix Systems Admin, Huntington Banks
7 Easton Oval, Cols, Oh 43219
tel:614-331-9806 cel:614-917-8218 pag:614-917-8218
How quickly daft jumping zebras vex.
> the remote schema. We were simply wanting to do LDAP auth and still manage
> users/groups locally on AIX. Only way we can find to do this is via nss_ldap.
> More's the pity...
Local group management was our original idea too, but AIX has not been cooperative.
Mark Merchant
Unix Systems Admin, Huntington Banks
7 Easton Oval, Cols, Oh 43219
tel:614-331-9806 cel:614-917-8218 pag:614-917-8218
How quickly daft jumping zebras vex.
| From: | "Gary Bennett" <benngl@...> |
| To: | "Mark.Merchant@..." <Mark.Merchant@...>, "Kyle Chapman" <Kyle.Chapman@...> |
| Cc: | "pamldap@..." <pamldap@...> |
| Date: | 09/11/2009 12:39 PM |
| Subject: | RE: [pamldap] eDir w/ AIX |
We don't want the native stuff, b/c it requires managing users w/support in the remote schema. We were simply wanting to do LDAP auth and still manage users/groups locally on AIX. Only way we can find to do this is via nss_ldap. More's the pity...
>>> Kyle Chapman <Kyle.Chapman@...> 9/11/2009 12:35 PM >>>
i have on 5.3 and down, though after tl5 with 5.3 i use the native stuff to talk to ad or openldap.
________________________________
From: owner-pamldap@... [owner-pamldap@...] On Behalf Of Mark.Merchant@...
Sent: Friday, September 11, 2009 11:27 AM
To: Gary Bennett
Cc: pamldap@...
Subject: Re: [pamldap] eDir w/ AIX
Yes, we had issues compiling nss_ldap on AIX, so we're using the native stuff.
The problem is that AIX produces a query that looks something like this:
(&(objectclass=posixgroup)\
(|(member=cn=hb92657,ou=aix,ou=unix,ou=datacenter,ou=hnbauth)(member=hb92657)))
Which eDir rejects because the last member= clause is not formatted like a dn
It's a little off topic for this list, I was just wondering if anyone was using eDir or another
directory where schema checking is enforced on the query.
Thx.
p.s. if anyone has gotten a clean compile on AIX, I'd love know how ;)
Mark Merchant
Unix Systems Admin, Huntington Banks
7 Easton Oval, Cols, Oh 43219
tel:614-331-9806 cel:614-917-8218 pag:614-917-8218
How quickly daft jumping zebras vex.
From: "Gary Bennett" <benngl@...>
To: <Mark.Merchant@...>
Date: 09/11/2009 11:14 AM
Subject: Re: [pamldap] eDir w/ AIX
________________________________
Mark, do you have to run nss_ldap for AIX to auth against other sources? We've had issues w/compiling on 5.3 or 6.1. TIA.
gary
gary bennett
shands hospital at uf
information services
>>> <Mark.Merchant@...> 9/11/2009 9:18 AM >>>
Is anyone running against Novell's eDir? We've run up against a strange
issue. It appears that eDir does a schema check against incoming queries.
I've never seen a directory do that before. Any ideas on how to get around
it?
Thx.
Mark Merchant
Unix Systems Admin, Huntington Banks
7 Easton Oval, Cols, Oh 43219
tel:614-331-9806 cel:614-917-8218 pag:614-917-8218
How quickly daft jumping zebras vex.
| Free embeddable forum powered by Nabble | Forum Help |
