Hi I will use the Virtualmin Ldap Client with Active Directory (server 2008 R2). It seems not possible. The Ldap client needs an objectclass called possixAccount, possixGroup.
I have a good connection but usrs and groups aren't found. Is there an option for mappings like this:
"nss_map_objectclass posixAccount user"
"nss_map_objectclass shadowAccount user "
"nss_map_objectclass posixGroup group "
"nss_map_attribute uid sAMAccountName "
"nss_map_attribute uidNumber uidNumber "
"nss_map_attribute gidNumber gidNumber "
"nss_map_attribute givenname givenname "
"nss_map_attribute ou description "
"nss_map_attribute gecos displayName "
"nss_map_attribute homeDirectory unixHomeDirectory "
"nss_map_attribute loginShell loginShell "
"nss_map_attribute shadowLastChange pwdLastSet "
Thanks, Pierre
Comments
Submitted by JamieCameron on Mon, 11/04/2013 - 13:38 Comment #1
We haven't tested Virtualmin with active directory, sorry. Its LDAP schema is probably missing object classes that are needed for Unix users and groups, such as posixAccount, shadowAccount and posixGroup.
You may want to look into finding documentation on general Linux LDAP integration with active directory, as it would apply to Virtualmin as well.
Submitted by parlt on Mon, 11/04/2013 - 14:57 Comment #2
Ok I understand, but with a mapping option like on top it can be possible. For Ldap and AD we can use different mappings. Its nothing more than an abstraction level more - > FEATURE REQUEST.