40 lines
1.6 KiB
Diff
40 lines
1.6 KiB
Diff
From be0fb81d4720c590269d0fc747fcb31f53791bef Mon Sep 17 00:00:00 2001
|
|
From: Lukas Slebodnik <lslebodn@redhat.com>
|
|
Date: Tue, 7 Apr 2015 09:47:17 +0200
|
|
Subject: [PATCH 16/30] ad_opts: Use different default attribute for group name
|
|
|
|
The MSFT docs [1,2] for LDAP attributes says:
|
|
samAccountName is mandotory for 'user' and 'group' objectclasses
|
|
via the 'Security-Principal' aux-class
|
|
|
|
name is part of the 'top' class and *not* mandatory for 'user' or 'group'.
|
|
|
|
[1] https://msdn.microsoft.com/en-us/library/ms679635%28v=vs.85%29.aspx
|
|
[2] https://msdn.microsoft.com/en-us/library/ms678697%28v=vs.85%29.aspx
|
|
|
|
Resolves:
|
|
https://fedorahosted.org/sssd/ticket/2593
|
|
|
|
Reviewed-by: Sumit Bose <sbose@redhat.com>
|
|
(cherry picked from commit b83620d6a2aaf988b353969ae12a47a616250f47)
|
|
---
|
|
src/providers/ad/ad_opts.h | 2 +-
|
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
|
diff --git a/src/providers/ad/ad_opts.h b/src/providers/ad/ad_opts.h
|
|
index 4c287021c2d901999602621a4fe3b7af9c6b8c35..b03c74612d3141170dac84ab805529184fec5a49 100644
|
|
--- a/src/providers/ad/ad_opts.h
|
|
+++ b/src/providers/ad/ad_opts.h
|
|
@@ -221,7 +221,7 @@ struct sdap_attr_map ad_2008r2_user_map[] = {
|
|
struct sdap_attr_map ad_2008r2_group_map[] = {
|
|
{ "ldap_group_object_class", "group", SYSDB_GROUP_CLASS, NULL },
|
|
{ "ldap_group_object_class_alt", NULL, SYSDB_GROUP_CLASS, NULL },
|
|
- { "ldap_group_name", "name", SYSDB_NAME, NULL },
|
|
+ { "ldap_group_name", "sAMAccountName", SYSDB_NAME, NULL },
|
|
{ "ldap_group_pwd", NULL, SYSDB_PWD, NULL },
|
|
{ "ldap_group_gid_number", "gidNumber", SYSDB_GIDNUM, NULL },
|
|
{ "ldap_group_member", "member", SYSDB_MEMBER, NULL },
|
|
--
|
|
2.4.3
|
|
|