Discussion:
[SSSD] Using SSSD with Samba 4 (ldap_result error: [Can't contact LDAP server])
Rubin
2012-05-08 10:43:23 UTC
Permalink
Hi All,

I'm trying to get sssd to work with samba 4 and am having a rather
difficult time to get things to work.

I can see that sssd can actually talk to the samba 4 ldap service, and I
have verified that all attributes as specified in my sssd.conf exist. I
have verified that I can do ldapsearch queries identical to those done
by ldap_search_ext. The attached sssd.conf is known_working with a
"real" Active Directory 2003 R2.

I have set TLS_REQCERT = never and TLS_CACERT in /etc/ldap/ldap.conf
because I know that one of the error messages (see subject) might be
related to that. In sssd.conf I've set ldap_tls_reqcert=never and
temporarily set ldap_auth_disable_tls_never_use_in_production to True.
This has not made any difference.

I'm using Ubuntu LTS 12.04, on x86_64 with sssd 1.8.2-0ubuntu1.

I've attached my sssd.conf and a selection of relevant lines from the
sssd_SAMBA.log file.

Essentially, I can see that results are returned from the ldap server:

[sdap_parse_entry] (0x4000): OriginalDN: [CN=Rubin \
Simons,OU=Organization,DC=raaftech,DC=nl].

But then I see it reconnecting to the base domain name (probably typical
for Active Directory?):

[sdap_rebind_proc] (0x1000): Successfully bind to \
[ldap://raaftech.nl/CN=Configuration,DC=raaftech,DC=nl].

Which seems to fail later on (10 lines later):

[sdap_process_result] (0x0040): ldap_result error: \
[Can't contact LDAP server]

Since raaftech.nl is not in my ca.crt certificate I was suspecting an
typical tls hostname mismatch to be the cause, but since I've set
ldap_tls_reqcert=never and ldap_auth_disable_tls_never_use_in_production
I would not expect this error to occur (I know the error is very generic
but it is often related to tls).

The following ldap searches work (the search filter is lifted literally
from sssd_SAMBA.log):

# Without host uri specification (will default to 127.0.0.1):
ldapsearch -x -ZZ -L -D ldap-elohim at raaftech.nl -W -b
"dc=raaftech,dc=nl"
'(&(objectclass=person)(msSFU30Name=*)(uidNumber=*)(gidNumber=*))'

# With short hostname:
ldapsearch -x -ZZ -L -H ldap://elohim -D ldap-elohim at raaftech.nl -W -b
"dc=raaftech,dc=nl"
'(&(objectclass=person)(msSFU30Name=*)(uidNumber=*)(gidNumber=*))'

# With domainname:
ldapsearch -x -ZZ -L -H ldap://raaftech.nl -D ldap-elohim at raaftech.nl -W
-b "dc=raaftech,dc=nl"
'(&(objectclass=person)(msSFU30Name=*)(uidNumber=*)(gidNumber=*))'


In short, I think I tried everything and am suspecting an issue inside
sssd. As an aside, I don't understand fully why the reconnect occurs to
ldap://raaftech.nl/CN=Configuration,DC=raaftech,DC=nl .. I suspect this
has to do with why I'm having a problem.

Any pointers would be GREATLY appreciated!!


Kind regards,


Rubin Simons,
RAAF Technology

-------------- next part --------------
[sssd]
config_file_version = 2
reconnection_retries = 3
sbus_timeout = 30
services = nss, pam
domains = LOCAL,SAMBA

[nss]
; debug_level = 3
filter_groups = root
filter_users = root
reconnection_retries = 3
; entry_cache_timeout = 600
; entry_cache_nowait_timeout = 300

[pam]
; debug_level = 3
reconnection_retries = 3

[domain/LOCAL]
; debug_level = 3
description = LOCAL Users domain
id_provider = local
enumerate = true
;min_id = 400
;max_id = 499

[domain/SAMBA]
debug_level = 20
description = Samba 4 Authentication Environment
enumerate = true
min_id = 500
id_provider = ldap
ldap_uri = ldap://elohim
ldap_auth_disable_tls_never_use_in_production = True
ldap_tls_reqcert = never
ldap_tls_cacert = /etc/ssl/private/ca.crt
ldap_schema = rfc2307bis
ldap_search_base = dc=raaftech,dc=nl
ldap_default_bind_dn = cn=ldap-elohim,cn=users,dc=raaftech,dc=nl
ldap_default_authtok_type = password
ldap_default_authtok = ThisIsNotTheRealPassword
ldap_user_object_class = person
ldap_user_name = msSFU30Name
ldap_user_fullname = name
ldap_user_gecos = name
ldap_user_uid_number = uidNumber
ldap_user_gid_number = gidNumber
ldap_user_home_directory = unixHomeDirectory
ldap_user_shell = loginShell
ldap_user_principal = userPrincipalName
ldap_user_pwd = unixUserPassword
ldap_user_modify_timestamp = whenChanged
ldap_group_object_class = group
ldap_group_name = msSFU30Name
ldap_group_gid_number = gidNumber
ldap_group_pwd = unixUserPassword
ldap_group_modify_timestamp = whenChanged
ldap_force_upper_case_realm = True
auth_provider = krb5
chpass_provider = krb5
krb5_server = krb.srv.raaftech.nl
krb5_kpasswd = krb.srv.raaftech.nl
krb5_kdcip = krb.srv.raaftech.nl:88
krb5_realm = RAAFTECH.NL
krb5_changepw_principal = kadmin/changepw
krb5_ccachedir = /tmp
krb5_ccname_template = FILE:%d/krb5cc_%U_XXXXXX
krb5_auth_timeout = 15
-------------- next part --------------
Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [simple_bind_done] (0x0200): Server returned no controls.
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [simple_bind_done] (0x0080): Bind result: Success(0), no errmsg set
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [fo_set_port_status] (0x0100): Marking port 389 of server 'elohim' as 'working'
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [set_server_common_status] (0x0100): Marking server 'elohim' as 'working'
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_id_op_connect_done] (0x4000): notify connected to op #1
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_users_next_base] (0x0400): Searching for users with base [dc=raaftech,dc=nl]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x0400): calling ldap_search_ext with [(&(objectclass=person)(msSFU30Name=*)(uidNumber=*)(gidNumber=*))][dc=raaftech,dc=nl].
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [objectClass]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [msSFU30Name]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [unixUserPassword]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [uidNumber]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [gidNumber]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [name]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [unixHomeDirectory]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [loginShell]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [userPrincipalName]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [name]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [memberOf]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [nsUniqueId]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [whenChanged]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [uSNChanged]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [shadowLastChange]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [shadowMin]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [shadowMax]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [shadowWarning]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [shadowInactive]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [shadowExpire]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [shadowFlag]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [krbLastPwdChange]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [krbPasswordExpiration]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [pwdAttribute]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [authorizedService]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [accountExpires]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [userAccountControl]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [nsAccountLock]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [host]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [loginDisabled]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [loginExpirationTime]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [loginAllowedTimeMap]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x2000): ldap_search_ext called, msgid = 3
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_id_op_connect_done] (0x4000): caching successful connection after 1 notifies
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: ldap_result found nothing!
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_ENTRY]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_parse_entry] (0x4000): OriginalDN: [CN=Maarten van der Aart,OU=Organization,DC=raaftech,DC=nl].
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_ENTRY]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_parse_entry] (0x4000): OriginalDN: [CN=Maurice Schillemans,OU=Organization,DC=raaftech,DC=nl].
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_ENTRY]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_parse_entry] (0x4000): OriginalDN: [CN=Freek Alleman,OU=Organization,DC=raaftech,DC=nl].
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_ENTRY]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_parse_entry] (0x4000): OriginalDN: [CN=Rubin Simons,OU=Organization,DC=raaftech,DC=nl].
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_ENTRY]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_parse_entry] (0x4000): OriginalDN: [CN=Thomas Hood,OU=Organization,DC=raaftech,DC=nl].
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_ldap_connect_callback_add] (0x1000): New LDAP connection to [ldap://raaftech.nl/CN=Configuration,DC=raaftech,DC=nl] with fd [18].
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_rebind_proc] (0x1000): Successfully bind to [ldap://raaftech.nl/CN=Configuration,DC=raaftech,DC=nl].
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: ldap_result found nothing!
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_process_result] (0x0040): ldap_result error: [Can't contact LDAP server]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [sdap_handle_release] (0x2000): Trace: sh[0xd1d910], connected[1], ops[0xd2d1d0], ldap[0xd1af00], destructor_lock[0], release_memory[0]
(Tue May 8 11:47:49 2012) [sssd[be[SAMBA]]] [remove_connection_callback] (0x4000): Successfully removed connection callback.
Stephen Gallagher
2012-05-08 11:34:51 UTC
Permalink
Post by Rubin
Hi All,
I'm trying to get sssd to work with samba 4 and am having a rather
difficult time to get things to work.
I can see that sssd can actually talk to the samba 4 ldap service, and I
have verified that all attributes as specified in my sssd.conf exist. I
have verified that I can do ldapsearch queries identical to those done
by ldap_search_ext. The attached sssd.conf is known_working with a
"real" Active Directory 2003 R2.
I have set TLS_REQCERT = never and TLS_CACERT in /etc/ldap/ldap.conf
because I know that one of the error messages (see subject) might be
related to that. In sssd.conf I've set ldap_tls_reqcert=never and
temporarily set ldap_auth_disable_tls_never_use_in_production to True.
This has not made any difference.
I'm using Ubuntu LTS 12.04, on x86_64 with sssd 1.8.2-0ubuntu1.
I've attached my sssd.conf and a selection of relevant lines from the
sssd_SAMBA.log file.
[sdap_parse_entry] (0x4000): OriginalDN: [CN=Rubin \
Simons,OU=Organization,DC=raaftech,DC=nl].
But then I see it reconnecting to the base domain name (probably typical
Typical, yes. Useful: rarely. The short version is this: Active
Directory does a lot of completely unnecessary internal LDAP referrals.
Unless you're using partial replication (e.g. satellite offices only
contain a subset of the total AD data), they're a waste of time and
cause all sorts of problems.

Specifically, we cannot always successfully follow the referral if the
referred server requires different credentials or negotiation. In the
case of AD, chances are that the server you're trying to rebind to will
only accept SASL/GSSAPI authentication with a host principal, and is
therefore failing.

The easy answer here (as long as you're not using partial replication)
is to set 'ldap_referrals = False' in sssd.conf. I strongly suspect that
everything will just start working.

If you're using partial replication, you probably need to enroll the
host and get a host keytab to use, and you can follow the directions at
http://goo.gl/Be7sJ to accomplish this.


We're working in SSSD 1.9.0 to improve our interactions with AD. It's
one of our primary goals for that release.
Post by Rubin
[sdap_rebind_proc] (0x1000): Successfully bind to \
[ldap://raaftech.nl/CN=Configuration,DC=raaftech,DC=nl].
[sdap_process_result] (0x0040): ldap_result error: \
[Can't contact LDAP server]
Since raaftech.nl is not in my ca.crt certificate I was suspecting an
typical tls hostname mismatch to be the cause, but since I've set
ldap_tls_reqcert=never and ldap_auth_disable_tls_never_use_in_production
I would not expect this error to occur (I know the error is very generic
but it is often related to tls).
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <https://fedorahosted.org/pipermail/sssd-devel/attachments/20120508/945588df/attachment.sig>
Rubin
2012-05-08 13:10:52 UTC
Permalink
Hi Stephen,

Thanks for the quick reply. I was suspecting that this referal stuff was
breaking things so I tried setting:

ldap_user_search_base = ou=organization,dc=raaftech,dc=nl
ldap_group_search_base = cn=users,dc=raaftech,dc=nl

And sure enough, the nss part was now working; I suppose that is because
I'm not running into referal records in these specific search-bases! Now
I still got into trouble with the pam part though and kept getting
"System Error 4" messages. Setting:

ldap_referrals = False

Fixed this! I can now login to my Linux systems using Samba 4 and SSSD,
Thanks for the tip + prompt response!

I've attached a working sssd.conf file for other people who might run
into these issues when making SSSD talk to Samba 4. I've also attached
the neccessary MSFU30 ldif files that I created and used to make Samba 4
a real "Server for NIS" Domain so you can use the regular ADUC client
tool to administer "UNIX Attributes". If other readers want to use these
files, make sure you replace elohim, raaftech, raaftech.nl and
dc=raaftech,dc=nl strings with ones that make sense for you. You can
import these ldif files with a client like "Apache Directory Studio".


Kind regards + thanks for the great work + support,


Rubin Simons,
RAAF Technology
Post by Stephen Gallagher
Post by Rubin
Hi All,
I'm trying to get sssd to work with samba 4 and am having a rather
difficult time to get things to work.
I can see that sssd can actually talk to the samba 4 ldap service, and I
have verified that all attributes as specified in my sssd.conf exist. I
have verified that I can do ldapsearch queries identical to those done
by ldap_search_ext. The attached sssd.conf is known_working with a
"real" Active Directory 2003 R2.
I have set TLS_REQCERT = never and TLS_CACERT in /etc/ldap/ldap.conf
because I know that one of the error messages (see subject) might be
related to that. In sssd.conf I've set ldap_tls_reqcert=never and
temporarily set ldap_auth_disable_tls_never_use_in_production to True.
This has not made any difference.
I'm using Ubuntu LTS 12.04, on x86_64 with sssd 1.8.2-0ubuntu1.
I've attached my sssd.conf and a selection of relevant lines from the
sssd_SAMBA.log file.
[sdap_parse_entry] (0x4000): OriginalDN: [CN=Rubin \
Simons,OU=Organization,DC=raaftech,DC=nl].
But then I see it reconnecting to the base domain name (probably typical
Typical, yes. Useful: rarely. The short version is this: Active
Directory does a lot of completely unnecessary internal LDAP referrals.
Unless you're using partial replication (e.g. satellite offices only
contain a subset of the total AD data), they're a waste of time and
cause all sorts of problems.
Specifically, we cannot always successfully follow the referral if the
referred server requires different credentials or negotiation. In the
case of AD, chances are that the server you're trying to rebind to will
only accept SASL/GSSAPI authentication with a host principal, and is
therefore failing.
The easy answer here (as long as you're not using partial replication)
is to set 'ldap_referrals = False' in sssd.conf. I strongly suspect that
everything will just start working.
If you're using partial replication, you probably need to enroll the
host and get a host keytab to use, and you can follow the directions at
http://goo.gl/Be7sJ to accomplish this.
We're working in SSSD 1.9.0 to improve our interactions with AD. It's
one of our primary goals for that release.
Post by Rubin
[sdap_rebind_proc] (0x1000): Successfully bind to \
[ldap://raaftech.nl/CN=Configuration,DC=raaftech,DC=nl].
[sdap_process_result] (0x0040): ldap_result error: \
[Can't contact LDAP server]
Since raaftech.nl is not in my ca.crt certificate I was suspecting an
typical tls hostname mismatch to be the cause, but since I've set
ldap_tls_reqcert=never and ldap_auth_disable_tls_never_use_in_production
I would not expect this error to occur (I know the error is very generic
but it is often related to tls).
_______________________________________________
sssd-devel mailing list
sssd-devel at lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
-------------- next part --------------
[sssd]
config_file_version = 2
reconnection_retries = 3
sbus_timeout = 30
services = nss, pam
domains = LOCAL,SAMBA

[nss]
; debug_level = 3
filter_groups = root
filter_users = root
reconnection_retries = 3
; entry_cache_timeout = 600
; entry_cache_nowait_timeout = 300

[pam]
; debug_level = 3
reconnection_retries = 3

[domain/LOCAL]
; debug_level = 3
description = LOCAL Users domain
id_provider = local
enumerate = true
min_id = 400
max_id = 499

[domain/SAMBA]
; debug_level = 3
description = Samba 4 Authentication Environment
enumerate = true
min_id = 500
id_provider = ldap
ldap_uri = ldap://172.17.1.2
; ldap_auth_disable_tls_never_use_in_production = True
ldap_tls_reqcert = never
ldap_tls_cacert = /etc/ssl/private/ca.crt
ldap_schema = rfc2307bis
ldap_referrals = False
; ldap_search_base = dc=raaftech,dc=nl
ldap_user_search_base = ou=organization,dc=raaftech,dc=nl
ldap_group_search_base = cn=users,dc=raaftech,dc=nl
ldap_default_bind_dn = cn=ldap-elohim,cn=users,dc=raaftech,dc=nl
ldap_default_authtok_type = password
ldap_default_authtok = NoThisIsNotThePassword
ldap_user_object_class = person
ldap_user_name = msSFU30Name
ldap_user_fullname = name
ldap_user_gecos = name
ldap_user_uid_number = uidNumber
ldap_user_gid_number = gidNumber
ldap_user_home_directory = unixHomeDirectory
ldap_user_shell = loginShell
ldap_user_principal = userPrincipalName
ldap_user_pwd = unixUserPassword
ldap_user_modify_timestamp = whenChanged
ldap_group_object_class = group
ldap_group_name = msSFU30Name
ldap_group_gid_number = gidNumber
ldap_group_pwd = unixUserPassword
ldap_group_modify_timestamp = whenChanged
ldap_force_upper_case_realm = True
auth_provider = krb5
chpass_provider = krb5
krb5_server = 172.17.1.2
krb5_kpasswd = 172.17.1.2
krb5_kdcip = 172.17.1.2
krb5_realm = RAAFTECH.NL
krb5_changepw_principal = kadmin/changepw
krb5_ccachedir = /tmp
krb5_ccname_template = FILE:%d/krb5cc_%U_XXXXXX
krb5_auth_timeout = 15
-------------- next part --------------
version: 1

dn: CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: ypServ30
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: ypServ30
adminDisplayName: ypServ30
distinguishedName: CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: ypServ30
schemaVersion: 40
showInAdvancedViewOnly: TRUE

dn: CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: ypservers
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: ypservers
adminDisplayName: ypservers
distinguishedName: CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: ypservers
showInAdvancedViewOnly: TRUE

dn: CN=bydefaults,CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: bydefaults
adminDisplayName: bydefaults
cn: bydefaults
distinguishedName: CN=bydefaults,CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator:: IA==
msSFU30IntraFieldSeparator:: IA==
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (objectCategory=msSFU30YpServers)
msSFU30ResultAttributes: msSFU30Name
msSFU30SearchAttributes: msSFU30Name
name: bydefaults
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=ypservers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30MaxGidNumber: 10000
msSFU30MaxUidNumber: 10000
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=mail,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: mail
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: mail
adminDisplayName: mail
distinguishedName: CN=mail,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: mail
showInAdvancedViewOnly: TRUE

dn: CN=aliases,CN=mail,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: aliases
adminDisplayName: aliases
cn: aliases
distinguishedName: CN=aliases,CN=mail,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator:: Og==
msSFU30IntraFieldSeparator: ,
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (objectCategory=msSFU30MailAliases)
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: msSFU30Aliases
name: aliases
showInAdvancedViewOnly: TRUE

dn: CN=byaddr,CN=mail,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byaddr
adminDisplayName: byaddr
cn: byaddr
distinguishedName: CN=byaddr,CN=mail,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator:: Og==
msSFU30IntraFieldSeparator: ,
msSFU30KeyAttributes: msSFU30Aliases
msSFU30MapFilter: (objectCategory=msSFU30MailAliases)
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: msSFU30Aliases
name: byaddr
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=mail,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=mail,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: passwd
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: passwd
adminDisplayName: passwd
distinguishedName: CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: passwd
showInAdvancedViewOnly: TRUE

dn: CN=byname,CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byname
adminDisplayName: byname
cn: byname
distinguishedName: CN=byname,CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator:: Og==
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (uidNumber=*)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: unixUserPassword
msSFU30ResultAttributes: uidNumber
msSFU30ResultAttributes: gidNumber
msSFU30ResultAttributes: gecos
msSFU30ResultAttributes: unixHomeDirectory
msSFU30ResultAttributes: loginShell
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: unixUserPassword
msSFU30SearchAttributes: uidNumber
msSFU30SearchAttributes: gidNumber
msSFU30SearchAttributes: gecos
msSFU30SearchAttributes: unixHomeDirectory
msSFU30SearchAttributes: loginShell
name: byname
showInAdvancedViewOnly: TRUE

dn: CN=byuid,CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byuid
adminDisplayName: byuid
cn: byuid
distinguishedName: CN=byuid,CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator:: Og==
msSFU30KeyAttributes: uidNumber
msSFU30MapFilter: (uidNumber=*)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: unixUserPassword
msSFU30ResultAttributes: uidNumber
msSFU30ResultAttributes: gidNumber
msSFU30ResultAttributes: gecos
msSFU30ResultAttributes: unixHomeDirectory
msSFU30ResultAttributes: loginShell
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: unixUserPassword
msSFU30SearchAttributes: uidNumber
msSFU30SearchAttributes: gidNumber
msSFU30SearchAttributes: gecos
msSFU30SearchAttributes: unixHomeDirectory
msSFU30SearchAttributes: loginShell
name: byuid
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10838
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH.invalid,CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH.invalid
distinguishedName: CN=RAAFTECH.invalid,CN=passwd,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: RAAFTECH.invalid
showInAdvancedViewOnly: TRUE

dn: CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: group
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: group
adminDisplayName: group
distinguishedName: CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: group
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH.invalid,CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH.invalid
distinguishedName: CN=RAAFTECH.invalid,CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: RAAFTECH.invalid
showInAdvancedViewOnly: TRUE

dn: CN=byname,CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byname
adminDisplayName: byname
cn: byname
distinguishedName: CN=byname,CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator:: Og==
msSFU30IntraFieldSeparator: ,
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (&(objectCategory=group)(gidNumber=*))
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: unixUserPassword
msSFU30ResultAttributes: gidNumber
msSFU30ResultAttributes: memberUid
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: unixUserPassword
msSFU30SearchAttributes: gidNumber
msSFU30SearchAttributes: memberUid
name: byname
showInAdvancedViewOnly: TRUE

dn: CN=bygid,CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: bygid
adminDisplayName: bygid
cn: bygid
distinguishedName: CN=bygid,CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator:: Og==
msSFU30IntraFieldSeparator: ,
msSFU30KeyAttributes: gidNumber
msSFU30MapFilter: (&(objectCategory=group)(gidNumber=*))
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: unixUserPassword
msSFU30ResultAttributes: gidNumber
msSFU30ResultAttributes: memberUid
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: unixUserPassword
msSFU30SearchAttributes: gidNumber
msSFU30SearchAttributes: memberUid
name: bygid
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=group,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10850
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=services,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: services
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: services
adminDisplayName: services
distinguishedName: CN=services,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: services
showInAdvancedViewOnly: TRUE

dn: CN=byname,CN=services,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byname
adminDisplayName: byname
cn: byname
distinguishedName: CN=byname,CN=services,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30KeyAttributes: CN
msSFU30MapFilter: (objectCategory=ipService)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: CN
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: CN
msSFU30SearchAttributes: msSFU30Aliases
name: byname
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=services,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=services,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=netid,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: netid
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: netid
adminDisplayName: netid
distinguishedName: CN=netid,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: netid
showInAdvancedViewOnly: TRUE

dn: CN=byname,CN=netid,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byname
adminDisplayName: byname
cn: byname
distinguishedName: CN=byname,CN=netid,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (objectCategory=msSFU30NetId)
msSFU30ResultAttributes: msSFU30KeyValues
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: msSFU30KeyValues
name: byname
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=netid,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=netid,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10425
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=ethers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: ethers
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: ethers
adminDisplayName: ethers
distinguishedName: CN=ethers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: ethers
showInAdvancedViewOnly: TRUE

dn: CN=byname,CN=ethers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byname
adminDisplayName: byname
cn: byname
distinguishedName: CN=byname,CN=ethers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (&(objectCategory=Device)(macAddress=*))
msSFU30ResultAttributes: macAddress
msSFU30ResultAttributes: msSFU30Name
msSFU30SearchAttributes: macAddress
msSFU30SearchAttributes: msSFU30Name
name: byname
showInAdvancedViewOnly: TRUE

dn: CN=byaddr,CN=ethers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byaddr
adminDisplayName: byaddr
cn: byaddr
distinguishedName: CN=byaddr,CN=ethers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30KeyAttributes: macAddress
msSFU30MapFilter: (&(objectCategory=Device)(macAddress=*))
msSFU30ResultAttributes: macAddress
msSFU30ResultAttributes: msSFU30Name
msSFU30SearchAttributes: macAddress
msSFU30SearchAttributes: msSFU30Name
name: byaddr
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=ethers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=ethers,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=rpc,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: rpc
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: rpc
adminDisplayName: rpc
distinguishedName: CN=rpc,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: rpc
showInAdvancedViewOnly: TRUE

dn: CN=bynumber,CN=rpc,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: bynumber
adminDisplayName: bynumber
cn: bynumber
distinguishedName: CN=bynumber,CN=rpc,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30KeyAttributes: oncRpcNumber
msSFU30MapFilter: (objectCategory=oncRpc)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: oncRpcNumber
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: oncRpcNumber
msSFU30SearchAttributes: msSFU30Aliases
name: bynumber
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=rpc,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=rpc,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: netgroup
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: netgroup
adminDisplayName: netgroup
distinguishedName: CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: netgroup
showInAdvancedViewOnly: TRUE

dn: CN=byhost,CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byhost
adminDisplayName: byhost
cn: byhost
distinguishedName: CN=byhost,CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: ,
msSFU30KeyAttributes: msSFU30NetgroupHostAtDomain
msSFU30MapFilter: (objectCategory=NisNetgroup)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: MemberNisNetgroup
msSFU30SearchAttributes: msSFU30NetgroupHostAtDomain
msSFU30SearchAttributes: MemberNisNetgroup
msSFU30SearchAttributes: msSFU30Name
name: byhost
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=byuser,CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byuser
adminDisplayName: byuser
cn: byuser
distinguishedName: CN=byuser,CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: ,
msSFU30KeyAttributes: msSFU30NetgroupUserAtDomain
msSFU30MapFilter: (objectCategory=NisNetgroup)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: MemberNisNetgroup
msSFU30SearchAttributes: msSFU30NetgroupUserAtDomain
msSFU30SearchAttributes: MemberNisNetgroup
msSFU30SearchAttributes: msSFU30Name
name: byuser
showInAdvancedViewOnly: TRUE

dn: CN=bydefaults,CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: bydefaults
adminDisplayName: bydefaults
cn: bydefaults
distinguishedName: CN=bydefaults,CN=netgroup,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: ,
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (objectCategory=NisNetgroup)
msSFU30ResultAttributes: NisNetgroupTriple
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: NisNetgroupTriple
name: bydefaults
showInAdvancedViewOnly: TRUE

dn: CN=bootparams,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: bootparams
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: bootparams
adminDisplayName: bootparams
distinguishedName: CN=bootparams,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: bootparams
showInAdvancedViewOnly: TRUE

dn: CN=bydefaults,CN=bootparams,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: bydefaults
adminDisplayName: bydefaults
cn: bydefaults
distinguishedName: CN=bydefaults,CN=bootparams,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: " "
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (&(objectCategory=Device)(bootParameter=*))
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: bootParameter
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: bootParameter
name: bydefaults
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=bootparams,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=bootparams,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=networks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: networks
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: networks
adminDisplayName: networks
distinguishedName: CN=networks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: networks
showInAdvancedViewOnly: TRUE

dn: CN=byaddr,CN=networks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byaddr
adminDisplayName: byaddr
cn: byaddr
distinguishedName: CN=byaddr,CN=networks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: " "
msSFU30KeyAttributes: ipNetworkNumber
msSFU30MapFilter: (objectCategory=ipNetwork)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: ipNetworkNumber
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: ipNetworkNumber
msSFU30SearchAttributes: msSFU30Aliases
name: byaddr
showInAdvancedViewOnly: TRUE

dn: CN=byname,CN=networks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byname
adminDisplayName: byname
cn: byname
distinguishedName: CN=byname,CN=networks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: " "
msSFU30KeyAttributes: msSFU30Name
msSFU30KeyAttributes: msSFU30Aliases
msSFU30MapFilter: (objectCategory=ipNetwork)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: ipNetworkNumber
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: ipNetworkNumber
msSFU30SearchAttributes: msSFU30Aliases
name: byname
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=networks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=networks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=netmasks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: netmasks
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: netmasks
adminDisplayName: netmasks
distinguishedName: CN=netmasks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: netmasks
showInAdvancedViewOnly: TRUE

dn: CN=byaddr,CN=netmasks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byaddr
adminDisplayName: byaddr
cn: byaddr
distinguishedName: CN=byaddr,CN=netmasks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: " "
msSFU30KeyAttributes: ipNetworkNumber
msSFU30MapFilter: (&(objectCategory=ipNetwork)(ipNetmaskNumber=*))
msSFU30ResultAttributes: ipNetworkNumber
msSFU30ResultAttributes: ipNetmaskNumber
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: ipNetworkNumber
msSFU30SearchAttributes: ipNetmaskNumber
name: byaddr
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=netmasks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=netmasks,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=hosts,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: hosts
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: hosts
adminDisplayName: hosts
distinguishedName: CN=hosts,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: hosts
showInAdvancedViewOnly: TRUE

dn: CN=byaddr,CN=hosts,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byaddr
adminDisplayName: byaddr
cn: byaddr
distinguishedName: CN=byaddr,CN=hosts,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: " "
msSFU30KeyAttributes: ipHostNumber
msSFU30MapFilter: (objectCategory=Computer)
msSFU30ResultAttributes: ipHostNumber
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: ipHostNumber
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: msSFU30Aliases
name: byaddr
showInAdvancedViewOnly: TRUE

dn: CN=byname,CN=hosts,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byname
adminDisplayName: byname
cn: byname
distinguishedName: CN=byname,CN=hosts,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: " "
msSFU30KeyAttributes: msSFU30Name
msSFU30KeyAttributes: msSFU30Aliases
msSFU30MapFilter: (objectCategory=Computer)
msSFU30ResultAttributes: ipHostNumber
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: ipHostNumber
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: msSFU30Aliases
name: byname
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=hosts,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=hosts,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=protocols,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: protocols
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: protocols
adminDisplayName: protocols
distinguishedName: CN=protocols,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: protocols
showInAdvancedViewOnly: TRUE

dn: CN=byname,CN=protocols,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: byname
adminDisplayName: byname
cn: byname
distinguishedName: CN=byname,CN=protocols,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: " "
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (objectCategory=ipProtocol)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: ipProtocolNumber
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: ipProtocolNumber
msSFU30SearchAttributes: msSFU30Aliases
name: byname
showInAdvancedViewOnly: TRUE

dn: CN=bynumber,CN=protocols,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: bynumber
adminDisplayName: bynumber
cn: bynumber
distinguishedName: CN=bynumber,CN=protocols,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator: " "
msSFU30IntraFieldSeparator: " "
msSFU30KeyAttributes: ipProtocolNumber
msSFU30MapFilter: (objectCategory=ipProtocol)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: ipProtocolNumber
msSFU30ResultAttributes: msSFU30Aliases
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: ipProtocolNumber
msSFU30SearchAttributes: msSFU30Aliases
name: bynumber
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=protocols,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=protocols,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10000
name: RAAFTECH
showInAdvancedViewOnly: TRUE

dn: CN=shadow,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: shadow
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: shadow
adminDisplayName: shadow
distinguishedName: CN=shadow,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
name: shadow
showInAdvancedViewOnly: TRUE

dn: CN=bydefaults,CN=shadow,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30NISMapConfig
instanceType: 4
objectCategory: CN=msSFU-30-NIS-Map-Config,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: bydefaults
adminDisplayName: bydefaults
cn: bydefaults
distinguishedName: CN=bydefaults,CN=shadow,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30FieldSeparator:: Og==
msSFU30IntraFieldSeparator:: Og==
msSFU30KeyAttributes: msSFU30Name
msSFU30MapFilter: (uidNumber=*)
msSFU30ResultAttributes: msSFU30Name
msSFU30ResultAttributes: unixUserPassword
msSFU30ResultAttributes: shadowLastChange
msSFU30ResultAttributes: shadowMin
msSFU30ResultAttributes: shadowMax
msSFU30ResultAttributes: shadowWarning
msSFU30ResultAttributes: shadowInactive
msSFU30ResultAttributes: shadowExpire
msSFU30ResultAttributes: shadowFlag
msSFU30SearchAttributes: msSFU30Name
msSFU30SearchAttributes: unixUserPassword
msSFU30SearchAttributes: shadowLastChange
msSFU30SearchAttributes: shadowMin
msSFU30SearchAttributes: shadowMax
msSFU30SearchAttributes: shadowWarning
msSFU30SearchAttributes: shadowInactive
msSFU30SearchAttributes: shadowExpire
msSFU30SearchAttributes: shadowFlag
name: bydefaults
showInAdvancedViewOnly: TRUE

dn: CN=RAAFTECH,CN=shadow,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: msSFU30DomainInfo
instanceType: 4
objectCategory: CN=msSFU-30-Domain-Info,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
cn: RAAFTECH
distinguishedName: CN=RAAFTECH,CN=shadow,CN=ypServ30,CN=RpcServices,CN=System,DC=RAAFTECH,DC=NL
msSFU30Domains: RAAFTECH
msSFU30MasterServerName: ELOHIM
msSFU30OrderNumber: 10419
name: RAAFTECH
showInAdvancedViewOnly: TRUE
-------------- next part --------------
version: 1

dn: CN=defaultMigrationContainer30,DC=RAAFTECH,DC=NL
objectClass: top
objectClass: container
cn: defaultMigrationContainer30
instanceType: 4
objectCategory: CN=Container,CN=Schema,CN=Configuration,DC=RAAFTECH,DC=NL
adminDescription: DefaultMigrationContainer30
adminDisplayName: DefaultMigrationContainer30
distinguishedName: CN=defaultMigrationContainer30,DC=RAAFTECH,DC=NL
name: defaultMigrationContainer30
showInAdvancedViewOnly: TRUE

Loading...