ports/76557: migrate unix accounts/groups to LDAP (add/modify existing entries) and dump LDAP to unix files
Pawel Wieleba
P.Wieleba at iem.pw.edu.pl
Sat Jan 22 01:00:47 UTC 2005
>Number: 76557
>Category: ports
>Synopsis: migrate unix accounts/groups to LDAP (add/modify existing entries) and dump LDAP to unix files
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Sat Jan 22 01:00:46 GMT 2005
>Closed-Date:
>Last-Modified:
>Originator: Pawel Wieleba
>Release: 6.0-CURRENT
>Organization:
>Environment:
FreeBSD server 6.0-CURRENT FreeBSD 6.0-CURRENT #0:
>Description:
A problem and solution is described in the article:
www.iem.pw.edu.pl/~wielebap/ldap/smbldap-tools/2/smbldap-tools_doc2.pdf
smbldap-tools cannot migrate unix accounts/groups to LDAP.
This operation can be done with PADL MigrationTools, but...
they cannot update existing user entries with the information
delivered by unix files (passwd,shadow,groups,master.passwd).
Even entry structure objectClass can be changed during migration,
as is essential in the example scenario:
# pdbedit -e ldapsam:ldap://localhost
# smbldap-migrate-passwd -P /etc/passwd
New scripts can migrate from unix files to LDAP and vice versa
(LDAP database can be dumped to unix files - passwd, shadow,...).
>How-To-Repeat:
>Fix:
I've created 4 scripts at the beginning.
They can be downloaded from my web:
www.iem.pw.edu.pl/~wielebap/ldap/smbldap-tools/2/smbldap-migrate-passwd
www.iem.pw.edu.pl/~wielebap/ldap/smbldap-tools/2/smbldap-migrate-2passwd
www.iem.pw.edu.pl/~wielebap/ldap/smbldap-tools/2/smbldap-migrate-group
www.iem.pw.edu.pl/~wielebap/ldap/smbldap-tools/2/smbldap-migrate-2group
They seem to be very useful and I tried to make them as simple as possible.
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list