| 1 |
On Sat, Feb 24, 2007 at 03:23:28AM -0800, Josh Saddler wrote: |
| 2 |
> Er. Granted, they're out of date, because we don't have anyone who knows |
| 3 |
> ldap (and gongloo never showed up with a promised rewrite), but all of |
| 4 |
> our documentation seems to be geared toward openldap-2.1 or so. |
| 5 |
> |
| 6 |
> http://www.gentoo.org/doc/en/ldapdns-guide.xml --> is still considered |
| 7 |
> "valid" |
| 8 |
There is nothing in that document that limits it to openldap-2.1. It |
| 9 |
should work perfectly fine with 2.2/2.3 and the upcoming 2.4. |
| 10 |
|
| 11 |
> http://www.gentoo.org/doc/en/ldap-howto.xml --> is considered |
| 12 |
> unmaintained and "invalid", since none of the GDP knows ldap. wouldn't |
| 13 |
> mind reinstating it if we can get users to help out with the updates. |
| 14 |
At a quick glance: |
| 15 |
- The ebuild handles the SSL certs now |
| 16 |
- migrationtools is no longer used, need to provide a bootstrap.ldif and |
| 17 |
point users to a suitable tool for creating their entries (I have a |
| 18 |
vested interest in diradm, and really need to get the next release of |
| 19 |
diradm out the door, but do NOT use it yet). |
| 20 |
- Well migrationtools can still be used, but it's something that you |
| 21 |
grab from a tarball, run exactly once, and throw away. |
| 22 |
- The pam/nss configuration and /etc/ldap.conf need a lot of work. |
| 23 |
|
| 24 |
So again, there is NOTHING that is specific to any version of OpenLDAP |
| 25 |
there. There's plenty that can be done better/slightly differently in |
| 26 |
2.2/2.3, but nothing that would fail anywhere other than 2.1. |
| 27 |
|
| 28 |
-- |
| 29 |
Robin Hugh Johnson |
| 30 |
Gentoo Linux Developer |
| 31 |
E-Mail : robbat2@g.o |
| 32 |
GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85 |
Archives