How to map Active directory group members to linux equivalent
[Date Prev][Date Next] [Thread Prev][Thread Next]How to map Active directory group members to linux equivalent
- From: Damien Dye <damien.dye [at] sondrel.com>
- To: nss-pam-ldapd-users [at] lists.arthurdejong.org
- Subject: How to map Active directory group members to linux equivalent
- Date: Sun, 19 Jan 2014 12:18:21 +0000
Hi all
wounder if you can help me am having a few issues trying to get group memberships to be driven from the standard active directory attribute called member but I can only seam to get it to work with memberUid which is not the same listing as group members as displayed in AD.# Mappings for Active Directory
pagesize 1000
#referrals off
filter passwd (&(objectClass=user)(!(objectClass=computer))(uidNumber=*)(unixHomeDirectory=*))
map passwd uid sAMAccountName
map passwd homeDirectory unixHomeDirectory
map passwd gecos displayName
filter shadow (&(objectClass=user)(!(objectClass=computer))(uidNumber=*)(unixHomeDirectory=*))
map shadow uid sAMAccountName
map shadow shadowLastChange pwdLastSet
filter group (objectClass=group)
#map group uniqueMember member this field caused daemon to fail to start
uid nslcd
gid ldap
scope sub
ssl no
tls_cacertdir /etc/openldap/cacerts
thanks for any help in advance
--
Damien Dye
IT Manager
Sondrel Ltd
Sondrel House, Theale Lakes Business Park
Moulden Way, Sulhamstead, Berkshire, RG7 4GB, UK
Tel: +44(0)118 9838 550
www.sondrel.com
![Sondrel]( "Sondrel")
This e-mail and any attachments may be confidential or legally privileged. If you are not the intended recipient, you should destroy the e-mail message and any attachments, and inform us of the erroneous delivery by return e-mail. You are prohibited from retaining, distributing, disclosing or using any information contained herein. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. Sondrel Ltd and the sender do not accept liability for any errors or omissions, nor do we accept liability for the content of this email, or for the consequences of any actions taken on the basis of the information provided, unless that information is consequently confirmed in writing under the personal signature of a duly authorised officer of Sondrel Ltd.
This email is sent on behalf of Sondrel Ltd registered in England with number 4491953, registered office Sondrel House, Theale Lakes Business Park, Moulden Way, Sulhamstead, Berkshire, RG7 4GB, UK.
Damien Dye
IT Manager
Sondrel Ltd
Sondrel House, Theale Lakes Business Park
Moulden Way, Sulhamstead, Berkshire, RG7 4GB, UK
Tel: +44(0)118 9838 550
www.sondrel.com
This e-mail and any attachments may be confidential or legally privileged. If you are not the intended recipient, you should destroy the e-mail message and any attachments, and inform us of the erroneous delivery by return e-mail. You are prohibited from retaining, distributing, disclosing or using any information contained herein. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. Sondrel Ltd and the sender do not accept liability for any errors or omissions, nor do we accept liability for the content of this email, or for the consequences of any actions taken on the basis of the information provided, unless that information is consequently confirmed in writing under the personal signature of a duly authorised officer of Sondrel Ltd.
This email is sent on behalf of Sondrel Ltd registered in England with number 4491953, registered office Sondrel House, Theale Lakes Business Park, Moulden Way, Sulhamstead, Berkshire, RG7 4GB, UK.
-- To unsubscribe send an email to nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see http://lists.arthurdejong.org/nss-pam-ldapd-users/
- How to map Active directory group members to linux equivalent, Damien Dye