idmapd umich_ldap bug
Kevin Coffman
kwc at citi.umich.edu
Mon Mar 17 09:35:09 EDT 2008
2008/3/14 Marek Wróbel <marek.j.wrobel at gmail.com>:
> In umich_ldap.c in function umich_id_to_name() in line 515 there is:
>
> attrs[0] = ldap_map.NFSv4_nfsname_attr;
>
> I think that NFSv4_group_nfsname_attr should be used when idtype ==
> IDTYPE_GROUP.
Thanks! I'll make this change in the next release.
> I also suggest to change umich_ldap behavior in a way that would allow
> multiple GSSAuthName attributes. It would be useful with several
> authentication mechanisms used concurrently - every user would have both
> a Kerberos principal name and a PKI DN.
This is already the case. Is there something which leads you to
believe otherwise?
K.C.
More information about the NFSv4
mailing list