[OpenIndiana-discuss] ActiveDirectory UID mapping (netatalk)

Gea alka at hfg-gmuend.de
Sat Aug 11 21:59:21 UTC 2012


Frank Lahm <franklahm <at> gmail.com> writes:

> 
> 2012/8/10 Gordon Ross <gordon.w.ross <at> gmail.com>:
> > On Thu, Aug 9, 2012 at 11:56 PM, Frank Lahm <franklahm <at> gmail.com> wrote:
> >> 2012/8/10 Gordon Ross <gordon.w.ross <at> gmail.com>:
> > [...]
> >>> If you setup idmap to use IDMU, then you'll get the UID/GID values
> >>> provided by AD, which are presumably the same values your other LDAP
> >>> clients will get from AD. :)
> >>
> >> <http://wiki.openindiana.org/oi/Active+Directory+Integration>
> >> -f
> >>
> >
> > http://lmgtfy.com/?q=solaris+idmap+idmu
> 
> *sigh*
> I was just giving a pointer to some doc I have spent considerable time
> and effort to provide a consolidated ressource for anybody facing this
> problem.
> You may notice that using idmu is one the things explained in great length.
> Feel free to add links and add enhancements.
> -f
> 

IDMU seems not really helpful. 
If one wants to provide a transparent multiprotokoll server (CIFS + AFP + AD +
ACL support)
on OpenIndiana, it must be fully integrated into the builtin CIFS mechanism
without the need to add 
anything to AD - with CIFS you need no IDMU due to ephemeral mappings.

Netatalk needs to use the (by the CIFS service) already created idmappings or it
must create 
a similar ephemeral mapping for new users (transparent for the next CIFS user).

How can that be done?







More information about the OpenIndiana-discuss mailing list