Hello,
I’m working on a setup with backend meta, the aim of the setup is to have a LDAP database for our Samba 3.
We already have a LDAP but we don’t wan’t to change the schema, so I’ve build a LDAP server on Centos with a local database for samba (cn=samba) and I plan to use meta to do the merge (and the translucent to save locally new fields for existing users).
I’ve successfully deploy the meta backend but it work in readonly mode, I can’t write on it…
Here is my config, if someone can give me a clue, that would be great :-)
####################################################################### # Samba Database #######################################################################
database bdb directory "/var/db/openldap/samba-directory" suffix "cn=samba" rootdn "uid=samba_root,cn=users,cn=samba" rootpw {SSHA}---
access to * by dn.exact="uid=samba_root,cn=users,dc=example,dc=com,dc=meta" write by * read
####################################################################### # Meta Database #######################################################################
database meta suffix "dc=example,dc=com,dc=meta"
## Main database dc=example,dc=com mapped to dc=example,dc=com,dc=meta uri "ldap://192.168.2.200/dc=example,dc=com,dc=meta" suffixmassage "dc=example,dc=com,dc=meta" "dc=example,dc=com"
## Mapping for specific Samba node uri "ldap://127.0.0.1:1389/sambaDomainName=EXAMPLE,dc=example,dc=com,dc=meta" suffixmassage "sambaDomainName=EXAMPLE,dc=example,dc=com,dc=meta" "sambaDomainName=EXAMPLE,cn=samba"
uri "ldap://127.0.0.1:1389/cn=idmap,dc=example,dc=com,dc=meta" suffixmassage "cn=idmap,dc=example,dc=com,dc=meta" "cn=idmap,cn=samba"
uri "ldap://127.0.0.1:1389/cn=nt-computers,dc=example,dc=com,dc=meta" suffixmassage "cn=nt-computers,dc=example,dc=com,dc=meta" "cn=nt-computers,cn=samba"
access to * by dn.exact="uid=samba_root,cn=users,dc=example,dc=com,dc=meta" write