Two openldap overlays that may be of interest to others.
In the first, I've hacked up Howard Chu's smbk5pwd openldap overlay to include the automatic addition of sambaNTPassword, sambaLMPassword, and sambaPwdLastSet attributes to any sambaSamAccount entries that are being ADDED to the directory.
WARNING: This overlay is ONLY useful with cleartext passwords.
In the second, I've modified my automatic uidnumber generator overlay to also add sambaSID's to sambaSamAccount entries that are being added to the directory. The algorithm used to generate the SID is the same as employed by smbldap-tools (2*uidNumber+1000). Currently, the samba domain SID is hardcoded to "S-1-0-0-". If you want to use this overlay, change this variable accordingly or teach the overlay how to read from config.
jr
Joel Reed wrote:
Two openldap overlays that may be of interest to others.
In the first, I've hacked up Howard Chu's smbk5pwd openldap overlay to include the automatic addition of sambaNTPassword, sambaLMPassword, and sambaPwdLastSet attributes to any sambaSamAccount entries that are being ADDED to the directory.
When you modify existing code, you should just post the diffs to the original. This is for at least two reasons: 1) diffs are usually more compact 2) usually the license on the original software requires you to explicitly mark your modifications
As the author of smbk5pwd I think both of those reasons are important.
If you want the OpenLDAP Project to consider incorporating your code into future distributions, you should adhere to the Contributing guidelines.
http://www.openldap.org/devel/contributing.html
Howard Chu wrote:
When you modify existing code, you should just post the diffs to the original. This is for at least two reasons:
- diffs are usually more compact
- usually the license on the original software requires you to
explicitly mark your modifications
As the author of smbk5pwd I think both of those reasons are important.
Will do.
If you want the OpenLDAP Project to consider incorporating your code into future distributions, you should adhere to the Contributing guidelines.
Thanks. I only posted in case someone else might find them useful, not for potential incorporation.
jr
Joel Reed wrote:
Howard Chu wrote:
When you modify existing code, you should just post the diffs to the original. This is for at least two reasons:
- diffs are usually more compact
- usually the license on the original software requires you to
explicitly mark your modifications
As the author of smbk5pwd I think both of those reasons are important.
Will do.
If you want the OpenLDAP Project to consider incorporating your code into future distributions, you should adhere to the Contributing guidelines.
Thanks. I only posted in case someone else might find them useful, not for potential incorporation.
You should do it for yourself as well, so they are always available to you easily.
openldap-software@openldap.org
-
Gavin Henry -
Howard Chu -
Joel Reed