[sparks-discuss] Active Directory name service module (nss_ad) [PSARC/2008/441 FastTrack timeout 07/18/2008]
Baban Kenkre
baban.kenkre at sun.com
Wed Jul 16 14:56:01 PDT 2008
Darren J Moffat wrote:
> Gary Winiger wrote:
>
>>>> | nsswitch.conf.4.txt | Modified nsswitch.conf(4) manpage |
>>>> +---------------------+-----------------------------------+
>>>>
>>> Please provide them and I'll make a best effort to review
>>> by the timer.
>>>
>> My concern is here in nsswitch.conf(4) functionality.
>> From the provided it's not clear what the project is
>> proposing.
>>
>> + When using Active Directory with native schema for name service,
>> + the default configuration should be modified to use ad for
>> + for passwd and group, dns for hosts resolution and files
>> + for the remaining databases on client machines.
>>
>> What passwd:, group: entries are supported?
>> In particular how are passwd(1), getauusernam(3), getuserattr(3)
>> and possibly other interfaces affected.
>>
>
> I think we can resolve this by shipping an /etc/nsswitch.ad just like we
> do for nis, nisplus, ldap, dns, files today.
>
The team decided to leave an example nsswitch.ad out because of the
limited use of "ad" i.e. "ad" only resolves "passwd" and "group" and
does not support logon of Windows users onto Solaris yet. But I see no
problem in delivering nsswitch.ad if that's the consensus.
--Baban
> --
> Darren J Moffat
> _______________________________________________
> sparks-discuss mailing list
> sparks-discuss at opensolaris.org
> http://mail.opensolaris.org/mailman/listinfo/sparks-discuss
>
More information about the opensolaris-arc
mailing list