| Les deux révisions précédentesRévision précédenteProchaine révision | Révision précédente |
| tech:ldap [2025/04/30 14:53] – Jean-Baptiste | tech:ldap [2026/01/08 10:34] (Version actuelle) – Jean-Baptiste |
|---|
| * https://tunuifranken.info/procedures/procedure_openldap-server_20201227.pdf | * https://tunuifranken.info/procedures/procedure_openldap-server_20201227.pdf |
| * [[https://linuxfr.org/news/la-version-2-2-de-ldap-synchronization-connector-est-la|LDAP Synchronization Connector (LSC)]] | * [[https://linuxfr.org/news/la-version-2-2-de-ldap-synchronization-connector-est-la|LDAP Synchronization Connector (LSC)]] |
| | * https://opendev.org/openstack/manila-image-elements/src/branch/master/data/docker/slapd.sh |
| |
| |
| </code> | </code> |
| |
| <code> | <code -> |
| $ curl "ldap://localhost:1389/dc=example,dc=com?homephone?sub?cn=*amar" \ | $ curl "ldap://localhost:1389/dc=example,dc=com?homephone?sub?cn=*amar" \ |
| -u "cn=directory manager" | -u "cn=directory manager" |
| </code> | </code> |
| |
| | <code bash> |
| ipa netgroup-add --desc="Netgroup description" --nisdomain="example.com" example-netgroup | ipa netgroup-add --desc="Netgroup description" --nisdomain="example.com" example-netgroup |
| |
| ipa netgroup-add-member --users={user1;user2,user3} \ | ipa netgroup-add-member --users={user1;user2,user3} \ |
| --groups={group1,group2} example-group | --groups={group1,group2} example-group |
| | </code> |
| |
| | <code -> |
| nisNetgroupTriple: This can be used to describe a user (,bobby,example.com) or a machine name (shellserver1,,example.com). This attribute can have multiple values. | nisNetgroupTriple: This can be used to describe a user (,bobby,example.com) or a machine name (shellserver1,,example.com). This attribute can have multiple values. |
| memberNisNetgroup: This is a very powerful attribute. It is used to merge the attribute values of another netgroup into the current one by simply listing the name (cn) of the merging netgroup. This attribute can have multiple values as well. | memberNisNetgroup: This is a very powerful attribute. It is used to merge the attribute values of another netgroup into the current one by simply listing the name (cn) of the merging netgroup. This attribute can have multiple values as well. |
| | </code> |
| |
| | <code -> |
| + : @QAUsers@@QASystems : 10. | + : @QAUsers@@QASystems : 10. |
| + : root : LOCAL | + : root : LOCAL |
| + : @Admins : 10. | + : @Admins : 10. |
| - : ALL : ALL | - : ALL : ALL |
| | </code> |
| |
| account required pam_access.so accessfile=/etc/security/access.netgroup.conf | <code bash> |
| | account required pam_access.so accessfile=/etc/security/access.netgroup.conf |
| | </code> |
| |
| https://support.hpe.com/hpesc/public/docDisplay?docId=c02058091&docLocale=en_US | https://support.hpe.com/hpesc/public/docDisplay?docId=c02058091&docLocale=en_US |
