welcome: please sign in

Upload page content

You can upload content for the page named below. If you change the page name, you can also upload content for another page. If the page name is empty, we derive the page name from the file name.

File to load page content from
Page name
Comment
First name of the author of the GNU Manifesto

Revision 3 as of 2010-01-06 03:21:13

Edit

OpenLDAP

We use OpenLDAP, but nothing depends on it.

We use LDAP as a members information directory to be looked up by hand, no services consult it.

For serving user metadata, we use libnss-afs which pulls that information from AFS PTS database. However, the PTS is not really intended for this, so it doesn't provide space for user's supplementary Unix groups, GECOS fields etc.

So we keep this information (real names, primarily, but UID/GID etc. as well) in LDAP, although only members' real name is ever looked up there. The "finger" command has been hacked slightly to obtain all info from AFS PTS, then query LDAP for real name, and then display results in an integrated "finger" output.

So, we could say that LDAP is only marginally used in our setup, but I expect we will rely on it more as our infrastructure expands and HCoop service grows in richness.