smedev:make_everything_dynamic_with_ldap

Différences

Ci-dessous, les différences entre deux révisions de la page.

Lien vers cette vue comparative

Les deux révisions précédentes Révision précédente
Prochaine révision 		Révision précédente
smedev:make_everything_dynamic_with_ldap [01/08/2013 09:08]
dani [Switch to qmail-ldap (or another LDAP aware MTA, like postfix)] 		smedev:make_everything_dynamic_with_ldap [01/08/2013 09:14] (Version actuelle)
dani [Disable user/group managements]
Ligne 6: Ligne 6:
  
 ===== The goal ===== ===== The goal =====
-The goal I have is to have more things in LDAP, ultimately, adding users and groups shouldn't require anything but adding the user or the group in LDAP. No templates to expand, no service to restart. This means for example, all the mail stuff (qpsmtpd, qmail) should read LDAP to get the required info, no more flat files, no more static configuration.+The goal is to have more things in LDAP, ultimately, adding users and groups shouldn't require anything but adding the user or the group in LDAP. No templates to expand, no service to restart. This means for example, all the mail stuff (qpsmtpd, qmail) should read LDAP to get the required info, no more flat files, no more static configuration.
  
 ===== In which way this can be useful ===== ===== In which way this can be useful =====
Ligne 44: Ligne 44:
  
 === Add smbk5pwd === === Add smbk5pwd ===
-smbk5pwd is a overlay which makes sure Unix and samba passwords stay in sync (as long as you use LDAP exop to chane the password). This would ensure password are in sync even if you change it from the command line using the passwd command, or with any other software which allow password modification through LDAP (SOGo, LemonLDAP::NG etc...)+smbk5pwd is a overlay which makes sure Unix and samba passwords stay in sync (as long as you use LDAP exop to change the password). This would ensure password are in sync even if you change it from the command line using the passwd command, or with any other software which allow password modification through LDAP (SOGo, LemonLDAP::NG etc...)
  
 See this bug: http://bugs.contribs.org/show_bug.cgi?id=6451 See this bug: http://bugs.contribs.org/show_bug.cgi?id=6451
Ligne 51: Ligne 51:
 Pseudonyms and all the variants with the different virtual domains should be added in LDAP Pseudonyms and all the variants with the different virtual domains should be added in LDAP
  
-  * Add all the virtual domains / pseudonyms combinations should be added in LDAP either as mail or mailAlternateAddress+  * All the virtual domains / pseudonyms combinations should be added in LDAP either as mail or mailAlternateAddress
   * A new prop should be available to select the first/preferred mail from the available pseudonyms   * A new prop should be available to select the first/preferred mail from the available pseudonyms
   * Maybe we should add a prop to create domains only for apache, and not handle mails.   * Maybe we should add a prop to create domains only for apache, and not handle mails.
Ligne 78: Ligne 78:
  
 ==== Disable user/group managements ==== ==== Disable user/group managements ====
-  * Make it possible to disable user and group management+  * Make it possible to disable user and group management. When a SME Server is using a remote LDAP server, we should prevent user/groups management
  • smedev/make_everything_dynamic_with_ldap.1375340915.txt.gz
  • Dernière modification: 01/08/2013 09:08
  • de dani