Bug 11461 - rfc2307 user creation
Summary: rfc2307 user creation
Status: NEW
Alias: None
Product: Samba 4.1 and newer
Classification: Unclassified
Component: AD: LDB/DSDB/SAMDB (show other bugs)
Version: unspecified
Hardware: All All
: P5 enhancement (vote)
Target Milestone: ---
Assignee: Andrew Bartlett
QA Contact: Samba QA Contact
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-08-22 12:37 UTC by pug
Modified: 2017-11-23 07:44 UTC (History)
3 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description pug 2015-08-22 12:37:34 UTC 
LDAP implementation should support an "auto increment" function when creating a UNIX attribute uidNumber. It takes some system resources to scan for next free uidNumber by client.
Comment 1 Andrew Bartlett 2015-08-24 02:48:03 UTC 
I agree.

Not only is finding a valid uidNumber difficult, it is unsafe against a racing process elsewhere.

The basic plan is that we should allow Samba to run in a mode where this is allocated, either on a single FSMO master (just as posixTrustOffset it meant to be) when the object is replicated there, or to use an algorithmic approach.

The challenge is that all the options suck, and none are good defaults, but I wrote a little of my thoughts here:

https://lists.samba.org/archive/samba-technical/2015-June/108027.html

The thread is very much worth a read.  What we need now is some implementation so we can see how it works in reality.