Ok where and when does the compat tree get populated? When I dump my look
over my ldif I do not see any accounts from the AD trust. With the
exception of the mapping groups which do no have uidnumbers listed with
them only gid
On Jun 6, 2017 4:46 AM, "Sumit Bose via FreeIPA-users" <
freeipa-users(a)lists.fedorahosted.org> wrote:
On Fri, Jun 02, 2017 at 12:02:04PM -0600, Frank Rey via
FreeIPA-users
wrote:
> I have a Netapp that does not support SSSD or Windbind and i want to use
> IDM ldap to do permission/name mapping. would using a Script on a SSSD
> client to populate a custom ldap schema in IPA with the SSSD uidnumber
> mappings be a bad idea? I know i would have to set up a cron job to run
it
> at a reasonable interval. set it up to create and remove users added or
> removed from the Posix group i have mapped from the AD trust. Am i
missing
> anything?
Maybe the compat tree is what you are looking for, please see
https://access.redhat.com/documentation/en-US/Red_Hat_
Enterprise_Linux/7/html/Windows_Integration_Guide/trust-legacy.html
for details.
bye,
Sumit
>
> Ray
> _______________________________________________
> FreeIPA-users mailing list -- freeipa-users(a)lists.fedorahosted.org
> To unsubscribe send an email to freeipa-users-leave@lists.
fedorahosted.org
_______________________________________________
FreeIPA-users mailing list -- freeipa-users(a)lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave(a)lists.fedorahosted.org