Hi all. I have samba 4.2.3 on freebsd 10.1 server. There are three DC and about 350 PC on domain. I wrote earlier that samba4 ldap performance is not enough for me. Now I want to try a server in the middle with openldap pcache - ldap cache proxy function. But it only works with appropriate openldap schema. Where I can find samba4 openldap schema? I'm going to cache simple queries such as (&(objectClass=user)(sAMAccountName=username)) I will have enough and the simplified schema. Thanks! -- With best regards, Tabolin Yuriy System administrator Speech Technology Center
On 16/12/15 19:02, Таболин Юрий wrote:> Hi all. > > I have samba 4.2.3 on freebsd 10.1 server. There are three DC and > about 350 PC on domain. I wrote earlier that samba4 ldap performance > is not enough for me. Now I want to try a server in the middle with > openldap pcache - ldap cache proxy function. But it only works with > appropriate openldap schema. Where I can find samba4 openldap schema? > I'm going to cache simple queries such as > > (&(objectClass=user)(sAMAccountName=username)) > > I will have enough and the simplified schema. Thanks! > >Not sure there is one, there is some work going on to get samba4 working with LDAP instead of the builtin ldap server, but it has gone quiet lately, not this means anything really. I understand that initially, Samba tried to use LDAP but could not get it to work, so had to go with their own built in ldap server. If you want to attempt something, you could do worse than looking in the setup directory that samba installs. Rowland
16.12.2015 22:35, Rowland penny пишет:> On 16/12/15 19:02, Таболин Юрий wrote: >> Hi all. >> >> I have samba 4.2.3 on freebsd 10.1 server. There are three DC and >> about 350 PC on domain. I wrote earlier that samba4 ldap performance >> is not enough for me. Now I want to try a server in the middle with >> openldap pcache - ldap cache proxy function. But it only works with >> appropriate openldap schema. Where I can find samba4 openldap schema? >> I'm going to cache simple queries such as >> >> (&(objectClass=user)(sAMAccountName=username)) >> >> I will have enough and the simplified schema. Thanks! >> >> > > Not sure there is one, there is some work going on to get samba4 > working with LDAP instead of the builtin ldap server, but it has gone > quiet lately, not this means anything really. I understand that > initially, Samba tried to use LDAP but could not get it to work, so > had to go with their own built in ldap server. If you want to attempt > something, you could do worse than looking in the setup directory that > samba installs. > >I looked at samba/setup/ad-schema, but there are Microsoft description schema files, but not openldap schema format. Or is there a way to convert them to openldap schema files? -- With best regards, Tabolin Yuriy System administrator Speech Technology Center
On 16/12/15 19:35, Rowland penny wrote:> On 16/12/15 19:02, Таболин Юрий wrote: >> Hi all. >> >> I have samba 4.2.3 on freebsd 10.1 server. There are three DC and >> about 350 PC on domain. I wrote earlier that samba4 ldap performance >> is not enough for me. Now I want to try a server in the middle with >> openldap pcache - ldap cache proxy function. But it only works with >> appropriate openldap schema. Where I can find samba4 openldap schema? >> I'm going to cache simple queries such as >> >> (&(objectClass=user)(sAMAccountName=username)) >> >> I will have enough and the simplified schema. Thanks! >> >> > > Not sure there is one, there is some work going on to get samba4 > working with LDAP instead of the builtin ldap server, but it has gone > quiet lately, not this means anything really. I understand that > initially, Samba tried to use LDAP but could not get it to work, so > had to go with their own built in ldap server. If you want to attempt > something, you could do worse than looking in the setup directory that > samba installs. > > Rowland >And then after I posted. I thought, I wonder if he didn't actually mean the AD schema, so did a quick google and within 10 seconds I found this: https://haroonferoze.wordpress.com/2012/11/26/openldap/ Rowland