Author Topic: object classes in openldap / lam on debian10  (Read 924 times)

0 Members and 1 Guest are viewing this topic.

Offline Eagle92

  • Jr. Member
  • **
  • Posts: 1
  • Karma: 0
  • I've just joined!
    • View Profile
    • Awards
object classes in openldap / lam on debian10
« on: October 05, 2020, 05:08:54 pm »
Hello,

I hope I can find here help for this issue.

I have installed an openldap and ldap account manager for administration gui on a debian10 system.

Here is the tree view:

dc=domain,dc=com
cn= admin
+ou= groups(5)
+ou= users (21)

When I create a user in the lam gui, then there's missing the objectClass: top - but I need this class - so ldap search is possible for searching uids in the groups etc. (my ssh is limited to group sshd_user - my gui created users are in this group and I can see it on the webserver when I command "getent group". - But sshd says "is not in group sshd_user" - if I add objectClass top , then login is ok and sshd accepts the user).

Anybody an idea how I can get this objectClass automatically when I create a user in gui without copying an working user? If you need any other informations, please write I can give them to you.

Thanks a lot.

Sorry for my terrible english - but english is not my native language

Best regards

Eagle92


Offline Mad Penguin

  • Administrator
  • Hero Member
  • *****
  • Posts: 1441
  • Karma: 10023
  • Gender: Male
    • View Profile
    • Awards
Re: object classes in openldap / lam on debian10
« Reply #1 on: October 05, 2020, 11:58:17 pm »
Hi, it's been a while since I used LDAP on Linux and I'm not sure what the "right" way to do what you want is. However, if you add a module that includes "objectClass: top" in it's default schema (I think for example Samba does) , then you should end up with a bunch of Samba related fields in the UI for each user (which you can mostly ignore) , but at the same time I *think* it should add "objectClass:top" to the schema so it's tagged against new users when they are added.

The Linux Community Forum

Re: object classes in openldap / lam on debian10
« Reply #1 on: October 05, 2020, 11:58:17 pm »

 


SimplePortal 2.3.3 © 2008-2010, SimplePortal