[OmniOS-discuss] LDAP and Active Directory via rfc2307
Michael Talbott
mtalbott at lji.org
Fri Apr 22 06:35:56 UTC 2016
Ah ha. Right you are. Groups now list all the members, but, it seems all the group members are listed as "John Doe" rather than jdoe which means that when jdoe logs in, he can't access his groups due to the naming disconnect. Any ideas of how to fix that? Somehow map the group members to samAccountName rather than the DN?
getent passwd;
jdoe:x:11439:10000:John Doe:/home/johndoe:/bin/bash
getent group;
testgroup::12345:John Doe
su jdoe;
newgrp testgroup;
newgrp: Sorry
> On Apr 21, 2016, at 8:15 PM, Paul B. Henson <henson at acm.org> wrote:
>
> On Thu, Apr 21, 2016 at 06:39:08PM -0700, Michael Talbott wrote:
>
>> -a attributeMap=group:uniqueMember=member \
>
> Pretty sure this should be "group:memberUid=member"...
>
More information about the OmniOS-discuss
mailing list