interesting, what about group membership that gives them access to data
on the server? how do you handle that? and, even with this script,
their home directories would have to be made, yes? why not add the user
to the unix side and then use the ldif you show here? am I missing
something?
steve
Oscar A. Valdez wrote:
> El vie, 19-05-2006 a las 13:33 -0500, Steve Strong escribi?:
>
>> how about writing a shell script to add the user to the unix side and
>> then copy the associated information (including the new group) into
>> fedora directory? is there some way to create an ldif file
>> programatically and then use ldapadd? has anyone done this already?
>>
>
> I don't add the user to the unix side. I have a script that creates an
> ldif file for new users, then just upload it into the DS with the
> ldapmodify command:
>
> dn: uid=jdoe,ou=People,dc=duraflex,dc=com,dc=sv
> changetype: add
> uid: oswaldof
> cn: John Doe
> givenName: John
> sn: Doe
> objectClass: person
> objectClass: organizationalPerson
> objectClass: inetOrgPerson
> objectClass: posixAccount
> objectClass: top
> objectClass: account
> objectClass: shadowAccount
> userPassword: {crypt}$1$PTSfaHrm$lo4r6RXB9rBB15SPX1e.O1
> shadowLastChange: 13246
> shadowMax: 99999
> shadowWarning: 7
> loginShell: /bin/bash
> uidNumber: 589
> gidNumber: 589
> homeDirectory: /home/jdoe
> gecos: John Doe
>
