#1031 [RFE] Implement "AD friendly" schema mapping
Closed: Fixed None Opened 8 years ago by sgallagh.

https://bugzilla.redhat.com/show_bug.cgi?id=743505

Active Directory implements RFC2307bis-like schema which looks like RFC2307bis, but it has a few exceptions. It would be nice to introduce something like:

ldap_schema=msrfc

which would be equivalent to:

ldap_user_object_class = user
ldap_group_object_class = group
ldap_user_home_directory = unixHomeDirectory
ldap_schema = rfc2307bis
ldap_sasl_authid = <hostname>$@<REALM>

This would ease integration with Active Directory

Fields changed

coverity: =>
description: https://bugzilla.redhat.com/show_bug.cgi?id=743505

{{{
Active Directory implements RFC2307bis-like schema which looks like RFC2307bis, but it has a few exceptions. It would be nice to introduce something like:

ldap_schema=msrfc

which would be equivalent to:

ldap_user_object_class = user
ldap_group_object_class = group
ldap_user_home_directory = unixHomeDirectory
ldap_schema = rfc2307bis
ldap_sasl_authid = <hostname>$@<realm>

This would ease integration with Active Directory
}}}
=> https://bugzilla.redhat.com/show_bug.cgi?id=743505

{{{
Active Directory implements RFC2307bis-like schema which looks like RFC2307bis, but it has a few exceptions. It would be nice to introduce something like:

ldap_schema=msrfc

which would be equivalent to:

ldap_user_object_class = user
ldap_group_object_class = group
ldap_user_home_directory = unixHomeDirectory
ldap_schema = rfc2307bis
ldap_sasl_authid = <hostname>$@<realm>

This would ease integration with Active Directory
}}}

milestone: NEEDS_TRIAGE => SSSD 1.9.0
patch: => 0
rhbz: =>
tests: => 0
testsupdated: => 0
upgrade: => 0

Fields changed

summary: Implement "AD friendly" schema mapping => [RFE] Implement "AD friendly" schema mapping
type: defect => enhancement

AD related enhancements are critical for 1.9.

blockedby: =>
blocking: =>
priority: minor => critical

Fields changed

feature_milestone: =>
milestone: SSSD 1.9.0 => SSSD AD Extensions Feature

Fields changed

owner: somebody => sgallagh
patch: 0 => 1
status: new => assigned

Fixed by 5363682

milestone: SSSD AD Extensions Feature => SSSD 1.9.0 beta 1
resolution: => fixed
status: assigned => closed

Replying to [ticket:1031 sgallagh]:

https://bugzilla.redhat.com/show_bug.cgi?id=743505

{{{
Active Directory implements RFC2307bis-like schema which looks like RFC2307bis, but it has a few exceptions. It would be nice to introduce something like:

ldap_schema=msrfc

which would be equivalent to:

ldap_user_object_class = user
ldap_group_object_class = group
ldap_user_home_directory = unixHomeDirectory
ldap_schema = rfc2307bis
ldap_sasl_authid = <hostname>$@<realm>

This would ease integration with Active Directory
}}}

Please also add:
ldap_autofs_map_object_class = nisMap
ldap_autofs_entry_object_class = nisObject
ldap_autofs_map_name = nisMapName
ldap_autofs_entry_value = nisMapEntry

setting as well.

Replying to [comment:8 ondrejv]:

Please also add:
{{{
ldap_autofs_map_object_class = nisMap
ldap_autofs_entry_object_class = nisObject
ldap_autofs_map_name = nisMapName
ldap_autofs_entry_value = nisMapEntry
}}}
setting as well.

I've split this request into https://fedorahosted.org/sssd/ticket/1341

Metadata Update from @sgallagh:
- Issue assigned to sgallagh
- Issue set to the milestone: SSSD 1.9.0 beta 1

3 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/2073

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata