Puppet users - Mar 2010 - Howto get LDAP attributes outside the host configuration container into puppet.

Hello All,

I would like to ask how to get LDAP attributes from outside of the
host container.

What do I mean by "host container":

It''s basically a tree node in LDAP that holds (contains) host-specific
attributes. This would for instance be a node identified by the
following DN:
cn=<hostname>,ou=<host_subtree_ou_node>,dc=<customer_subtree_dc_node>,dc=<location_dc_node>.
An example DN for a UNIX host :
cn=host1,ou=HostConfig,dc=customer1,dc=location1,dc=ux,dc=corp

Why I need it:

The thing is that there are certain information spread on a higher
level in the tree. These, (among others), are default gateways,
default ldap servers for ldap clients, default DNS server, etc.), etc.

In order to create proper entries in /var/ldap/ldap_client_file, I
would have to fetch, by an extra LDAP query, the content of
defaultServerList attribute.

My idea is to write a custom lookup function for such queries and
place it to a common module, so I can use it then in other modules as
needed. This function will return an array/list of attribute''s values.

If the attribute is single-valued, than it''s values get overwritten
during tree traversal (the attribute''s values in higher level will be
overwritten by values in lower level). On the other hand, when the
attribute is multi-valued, than all attribute''s values will be merged
into the resulting array.

Hence, a kind of "inheritance"/default values can be stored in LDAP.

Has anybody ever faced this problem? Maybe it''s already in puppet (I
use 0.25.4) and I have overlooked it.

Thanks for the answer.

Pali

-- 
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscribe@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.