Hello, I'm trying dynamic groups on ldap via dynlist overlay.
In the documentation (slapo-dynlist man page, openldap administrator guide) the examples are using the dyngroup.schema, which is marked as experimental.
There are more reliable schemas?
The experimental label is only due to the lack of an rfc, or other issues can be found using this schema?
Or it is better to define new attributes and objectclass in our internal schema?
The authorization attributes and objectclass are required or it is safe to ignore them if not used? I have tried a schema without them and I have only a warning in the log, but it is a test environment and maybe it is not exaustive.
Best regards
Paolo Miotto
---------------------------------------------------------------------- SEMEL (SErvizio di Messaging ELettronico) - AINF, Universita' di Udine