Re: groupOfNames not working

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Scott Classen <sclassen [at] lbl.gov>
To: AWeber - Ryan Steele <ryans [at] aweber.com>
Cc: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Re: groupOfNames not working
Date: Wed, 3 Aug 2011 10:03:47 -0700

Well It's working now, but I'm a bit unclear on the logic.

When the following option is in my nslcd.conf file I get only a list of group 
names returned when testing with the 'getent group' command.

map group memberUid member

When I change this to:

map group uniqueMember member

everything works as expected and 'getent group' returns the group names and all 
members of that group.

This seems odd to me since the posixGroup objectclass typically uses memberUid 
not uniqueMember. The groupOfUniqueNames objectclass (which I am NOT using) 
typically uses uniqueMember. I am/was trying to migrate from posixGroup to 
groupOfNames therefore I was under the impression that I should map memberUid 
to member NOT uniqueMember to member.

The bottom line is that it is working now. In the course of my troubleshooting 
I installed both version 0.7.13 and 0.8.3. Currently 0.8.3 is installed. Are 
there any issues I should be aware of or amy reason I should switch back to 
0.7.13 ?

Thanks

On Aug 3, 2011, at 7:00 AM, AWeber - Ryan Steele wrote:

> Scott,
> 
> It would help to know what your groups look like.  Another thing to check,
> without needing to see your groups, is that the schema on the server and 
> clients
> match.  Also, make sure nscd isn't running unexpectedly; it's bitten more 
> than a
> few people in similar situations.
> 
> Cheers,
> Ryan
> 
> Scott Classen wrote:
>> Hello,
>> 
>> I can't get nss-pam-ldapd to return members of a groupOfNames object
>> 
>> 'getent group' returns a list of LDAP groups, but not the members
>> 
>> group1:*:9120:
>> group2:*:9121:
>> group3:*:9122:
>> etc, etc
>> 
>> my LDAP groups are groupOfNames (structural object class) with
>> posixGroup as an auxillary object class.
>> 
>> I have added the following map to my nslcd.conf file:
>> 
>> map group memberUid member
>> 
>> I've tried compiling and installing nss-pam-ldapd versions 0.7.13 and
>> 0.8.3 and neither one is working yet.
>> 
>> Thanks for your help.
>> Scott
> 

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users

groupOfNames not working, Scott Classen
- Re: groupOfNames not working, AWeber - Ryan Steele
  - Re: groupOfNames not working, Scott Classen

Prev by Date: Re: groupOfNames not working
Next by Date: Re: groupOfNames not working
Previous by thread: Re: groupOfNames not working
Next by thread: Re: groupOfNames not working