Mapping attributes in nslcd.conf

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Greg Newton <gregster [at] uvic.ca>
To: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Mapping attributes in nslcd.conf
Date: Wed, 8 Sep 2010 15:54:26 -0700

Hi -

I'm trying use the map functionality in nslcd.conf to create localattributes.


I have one map working:
map passwd homeDirectory "/home/ldap/$uid"

which successfully reads the homeDirectory attribute from ldap(something like /home3/19/username) and changes it to a useful local path.


The other map I want to set up needs to be something like:
map group gid "$uid"
which doesn't work - nor do any of the variations on that theme.

My setup
LDAP server: SunLDAP (not under my control)
Client machines: Ubuntu 10.04, nslcd and associated pkgs. - v0.7.2

The ldap server does not currently have the gid attribute populated, sowhen an ldap-authenticated user logs in to a client machine they end upwith a home group (gid) set to their gidNumber rather than a string.

I believe that I am unable to change the gid because gid isn't populatedon the ldap server. The suggestion is that I can build a local attributeeven if it's missing:


<quote>"${homeDirectory:-/home/$uid}"

use the uid attribute to build a homeDirectory value if that attributeis missing</quote>


Ultimately my question is:
Can I map a local gid to an ldap uid when the ldap gid can't be read?

Can anyone point me to the answer?

Thanks,
Greg
--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users

Mapping attributes in nslcd.conf, Greg Newton

Re: Mapping attributes in nslcd.conf, David Tomaschik
- Re: Mapping attributes in nslcd.conf, Greg Newton
  - Re: Mapping attributes in nslcd.conf, David Tomaschik

Prev by Date: Re: sudo-ldap support
Next by Date: Re: Mapping attributes in nslcd.conf
Previous by thread: Re: sudo-ldap support
Next by thread: Re: Mapping attributes in nslcd.conf