[nssldap] nss_ldap - filter for nss_base_passwd not functional

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: subu <subu.ayyagari [at] gs.com>
To: nssldap [at] padl.com
Subject: [nssldap] nss_ldap - filter for nss_base_passwd not functional
Date: Sat, 27 Jan 2007 21:24:40 -0800 (PST)

Using nss_ldap, but it does not seem to look at attributes.
Below is a case where users with allowatrib=admin or dev are allowed.
But getent passwd shows *all* the records in LDAP.

Is there an additional step to  enforce restrictions specified by filter?

Eg:
nss_base_passwd 
ou=People,dc=gs,dc=com?one|(allowattrib=admin)(allowatrib=dev)

getent passwd ( dumps entire directory though )

Pl. advise,

thanks
subu.ayyagari@gs.com

[nssldap] nss_ldap - filter for nss_base_passwd not functional, subu

Re: [nssldap] nss_ldap - filter for nss_base_passwd not functional, Andrew Morgan
Re: [nssldap] nss_ldap - filter for nss_base_passwd not functional, Buchan Milne

Prev by Date: Re: [nssldap] DN->UID cache?
Next by Date: [nssldap] acl for libnss attributes
Previous by thread: Re: [nssldap] DN->UID cache?
Next by thread: Re: [nssldap] nss_ldap - filter for nss_base_passwd not functional