Re: [Users] LDAP
On Sun, 26 Feb 2012, Yaniv Kaul wrote:
On 02/26/2012 09:46 AM, Yair Zaslavsky wrote:
> On 02/26/2012 09:45 AM, Yair Zaslavsky wrote:
>> On 02/26/2012 09:18 AM, Oved Ourfalli wrote:
>>> Found the problem.
>>> We are identifying if the LDAP server is AD or not by checking if the
>>> root DSE contains the "defaultNamingContext" attribute.
>>> This attribute is not in the LDAP standard, thus it appears in AD, and
>>> not in IPA and RHDS...
>>>
>>> Looking at the rootDSE you provided it looks like it was added to IPA,
>>> therefore we identify it as AD.
>>>
>>> Can you open us a bug on that upstream?
>>> Given that issue, I think we should also provide a way to set the ldap
>>> provider type (using the engine-manage-domains utility), in order to
>>> workaround such issues in the future.
>> Don't you think that now this key (i.e providerType=IPA) kinda becomes
>> mandatory?
> Or actually, maybe we should have it optional - if set - then this value
> will be used for providerType, if not - our "auto-deduction" mechanism
> takes place.
>
> Thoughts?
Drop the auto-detection.
Thats a good point, I think the auto-detection is a bit overkill, most
users know what they are running. Is there someting I can add to the oVirt
DB manually so I can skip the engine-manage-domains utility for now and
move forward with using FreeIPA?
<>
Nathan Stratton CTO,
BlinkMind, Inc.
nathan at robotics.net nathan at blinkmind.com
http://www.robotics.net http://www.blinkmind.com