[TriLUG] LDAP provisioning/update best practices

Rick DeNatale rick.denatale at gmail.com
Fri Jul 14 13:52:11 EDT 2006


On 7/14/06, Michael Alan Dorman <mdorman at debian.org> wrote:

> > I need to do things like validate that usernames, and userids are
> > unique.  It could be done by enumerating the existing values from the
> > LDAP directory, but I can't see how to do it, together with the update
> > as a transaction.
>
> That, however, I don't believe you can do.  But, really, do you need to
> be unique in more than one thing?  If not, and I suspect not, then you
> make that your dn, and you simply insert your new record.  If the
> insert fails, there was a duplicate, and if it succeeds, there wasn't.

Yes they both need to be unique, the username and the userid are human
readable and machine readable (int) representations of the user
account, they correspond to the first and third fields respectively in
/etc/passwd

-- 
Rick DeNatale

IPMS/USA Region 12 Coordinator
http://ipmsr12.denhaven2.com/

Visit the Project Mercury Wiki Site
http://www.mercuryspacecraft.com/



More information about the TriLUG mailing list