From owner-freebsd-questions@FreeBSD.ORG  Mon Apr 25 15:42:17 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id C5A2A16A4CE
	for <freebsd-questions@freebsd.org>;
	Mon, 25 Apr 2005 15:42:17 +0000 (GMT)
Received: from hccgwy.mnscu.edu (hccgwy.mnscu.edu [134.29.200.1])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1482C43D1F
	for <freebsd-questions@freebsd.org>;
	Mon, 25 Apr 2005 15:42:17 +0000 (GMT)
	(envelope-from donbrearley@hcc.mnscu.edu)
Received: from HCC-DOMAIN-MTA by hccgwy.mnscu.edu
	with Novell_GroupWise; Mon, 25 Apr 2005 10:46:30 -0500
Message-Id: <s26cca85.089@hccgwy.mnscu.edu>
X-Mailer: Novell GroupWise Internet Agent 6.0.4
Date: Mon, 25 Apr 2005 10:46:04 -0500
From: "Don Brearley" <donbrearley@hcc.mnscu.edu>
To: <freebsd-questions@freebsd.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Subject: OpenLDAP 2.2.25 and FreeBSD 5.3 - group names and gid's
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Apr 2005 15:42:17 -0000


Hello,

I am having some problems with OpenLDAP 2.2.25 and FreeBSD 5.3.=20

I can currently authenticate against my ldap db, and utilities like id and =
chown
work with no problem.=20

The problem is gid to group name mapping.  In my ldif files, I can have a
"uid" entry and a "uidNumber" entry.  It would look something like this:

uid:  testuser
uidNumber: 2001

and that works.   I cannot have a group entry of the same.

gid: testgroup
gidNumber: 2001

OpenLDAP would complain that it couldnt read this file properly.. not =
until
the "gid:testgroup" entry was removed. =20

When I attempt to use an app like "chown" I have to specify the actual
gid number, eg:

chown -R testuser:2001 /home/testuser

I was wondering if anyone had found a way to have it so that you could
just enter it by name, and not by number.  eg:

chown -R testuser:testgroup /home/testuser

Obviously I would have to add a gid entry in my schema file, but I am left
wondering why this isnt already in there..  I dont want to spend a few =
hours
trying to re-invent the wheel when there is already a reason for it to
not be in there.

Any help or light on this situation is deeply appreciated.  If you need =
more
information, please let me know and I shall provide it.

Thanks

- Don Brearley