Bug 2183 - LDAP: Samba does not follows "ldap user suffix" to get user information
Summary: LDAP: Samba does not follows "ldap user suffix" to get user information
Status: CLOSED FIXED
Alias: None
Product: Samba 3.0
Classification: Unclassified
Component: User/Group Accounts (show other bugs)
Version: 3.0.9
Hardware: All Linux
: P3 normal
Target Milestone: none
Assignee: Samba Bugzilla Account
QA Contact: Samba QA Contact
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2004-12-22 07:22 UTC by Vinicius Moreira Mello
Modified: 2005-08-24 10:19 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Vinicius Moreira Mello 2004-12-22 07:22:21 UTC 
Not a bug, but an inconvenient default.

By default samba searches for the user's base under "ldap suffix". But this
limits  samba objects and users's objects to be under the same subtree. For
example, you cannot use ou=Samba,dc=my-domain,dc=org as "ldap suffix" and have
users "ldap user suffix" under ou=Unix,dc=mydomain,dc=org. It would be more
reasonable if users's and computer's lookups were done under the same suffix
they're added. It's not always that is possible to mix samba and Unix objects,
especially when you have a large directory service.
Comment 1 Gerald (Jerry) Carter (dead mail address) 2005-02-07 10:57:33 UTC 
fixed in 3.0.11
Comment 2 Gerald (Jerry) Carter (dead mail address) 2005-08-24 10:19:16 UTC 
sorry for the same, cleaning up the database to prevent unecessary reopens of bugs.