[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: schema for NSS LDAP with not all accounts active

On Sat, Mar 31, 2001 at 10:53:17PM +0200, Piotr Roszatycki wrote:
> > > Nice, but AFAIR the `service' attribute isn't standard. Did you use a
> > > special objectClass?
> > 
> > the filter is self defined, and the service filter was just an example, you
> > are allowed to filter it with anything you like.
> There are any standard or RFC? At least I can use Microsoft schema ;-)

i don't know about standard but there is a schema for one. (i don't remember if
it supported services directly but it could be implemented) 

the schema comes with directory manager (i can't remember the URL for it now
check d-d archives) the schema was named trustAccount or something like that.. 

or, you could use a filter like this:


and add another uid for the account (uid: account-pop) this is ofcourse haxory
but if you want (or are forced) to follow schemas this could be one solution..
ofcourse this filter=... has not been implemented yet, it's still a patch
waiting to be compiled on my machine =)

			      -< Sami Haahtinen >-
	    -< 2209 3C53 D0FB 041C F7B1  F908 A9B6 F730 B83D 761C >-

Reply to: