Only one local user needs access? Can it be owned by apache and writeable by the LDAP group?
Filesystem ACLs let you specify two groups, will that work?
Intentionally creating a GID collision at the scope of the local machine does not appear to have solved your problem, so I’d undo that right away.
Bryce
From: sssd-users-bounces@lists.fedorahosted.org [mailto:sssd-users-bounces@lists.fedorahosted.org]
On Behalf Of Jacob Weber
Sent: Friday, August 08, 2014 12:22 PM
To: sssd-users@lists.fedorahosted.org
Subject: [SSSD-users] Merging local/ldap groups
if you're using the RFC2307 schema (and not RFC2307bis) then it'spossible to just include a local user in the memberUid attribute. See:
Thanks...unfortunately I'm using RFC2307bis, so that won't work.
Jacob