Changes between Version 8 and Version 9 of Software/eAM/oFedAcc


Ignore:
Timestamp:
Aug 5, 2014, 3:06:35 PM (11 years ago)
Author:
seskar
Comment:

Legend:

Unmodified
Added
Removed
Modified

  • Software/eAM/oFedAcc

    v8 v9  
    169169 32. ERROR 32: Missing user's email address
    170170 33. ERROR 33: Missing user's ssh public key:
     171
     172== GENI Extension Schema for LDAP ==
     173
     174In order to automate delegated account creation/deletion, the AM uses following LDAP schema extension (in this example stored in file: '''geni.schema'''):
     175{{{
     176# octetString SYNTAX
     177attributetype ( 1.3.6.1.4.1.4203.666.1.90
     178        NAME 'remoteDN'
     179        DESC 'MANDATORY: baseDN from remote'
     180        EQUALITY caseIgnoreIA5Match
     181        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
     182
     183attributetype ( 1.3.6.1.4.1.4203.666.1.91
     184        NAME 'listOfChildren'
     185        DESC 'MANDATORY: List of children with this account cloned'
     186        EQUALITY caseIgnoreIA5Match
     187        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
     188
     189
     190# printableString SYNTAX yes|no
     191objectclass ( 1.3.6.1.4.1.4203.666.1.100
     192        NAME 'geniAttributes' SUP top AUXILIARY
     193        DESC 'MANDATORY: GENI related attributes'
     194        MAY ( remoteDN $ listOfChildren )
     195        )
     196
     197}}}
     198
     199In order for it to be loaded at start-up, this schema needs to be placed in server schema directory (for the latest version of [http://www.openldap.org/ slapd] in /etc/ldap/schema) and the following line has to be added to the LDAP configuration file (typically in /etc/ldap/slapd.conf):
     200{{{
     201include         /etc/ldap/schema/geni.schema
     202}}}