On Mon, 17 Oct 2016 18:09:36 +0200 Marc Muehlfeld via samba <samba at lists.samba.org> wrote:> Hi Lucas, > > Am 17.10.2016 um 17:31 schrieb Lucas Ferrari Correa via samba: > > In my company we have in our 389-ds LDAP server schemas created > > by our group with our own attributes specifications, and we want to > > know if it is possible to create these attributes in the > > Samba4 AD and how to do it. > > > Just call it "Samba AD". :-) > > > However, Samba supports Schema extensions. But as far as I know, we > don't have any documentation in the Wiki, beside: > https://wiki.samba.org/index.php/Samba_AD_schema_extensions > > Documenting this is on my list, but it won't happen soon. However I > guess there should be a lot of documentation on the internet how to > update the schema in an MS AD. > > If you prepare an LDIF file, such as the one for Automount in the > Wiki, I can test-import it here and see if it works. > > > Regards, > Marc >Hi Marc, it probably wont work ;-) Well, not as is, when I tried adding schema extensions, I had to add the attributes first, then the objectlasses, I couldn't add them all in one go. Rowland
Am 17.10.2016 um 18:16 schrieb Rowland Penny via samba:> Well, not as is, when I tried adding schema extensions, I had to add > the attributes first, then the objectlasses, I couldn't add them all in > one go.Was it a schema you created or the automount schema from the Wiki? I only tried the ypServ30.ldif schema a long time ago, which worked fine. Are there any rules for the LDIF file, such as attribute first, objectclasses later? Regards, Marc
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I have writen a howto, but it's in German and part of my Samba4 Book. I think I can write it in english and put it on my webpage. Mayby I can manage this today or at least this week I will inform you (and the list) if it is ready Am 17.10.2016 um 18:16 schrieb Rowland Penny via samba:> On Mon, 17 Oct 2016 18:09:36 +0200 Marc Muehlfeld via samba > <samba at lists.samba.org> wrote: > >> Hi Lucas, >> >> Am 17.10.2016 um 17:31 schrieb Lucas Ferrari Correa via samba: >>> In my company we have in our 389-ds LDAP server schemas >>> created by our group with our own attributes specifications, >>> and we want to know if it is possible to create these >>> attributes in the Samba4 AD and how to do it. >> >> >> Just call it "Samba AD". :-) >> >> >> However, Samba supports Schema extensions. But as far as I know, >> we don't have any documentation in the Wiki, beside: >> https://wiki.samba.org/index.php/Samba_AD_schema_extensions >> >> Documenting this is on my list, but it won't happen soon. However >> I guess there should be a lot of documentation on the internet >> how to update the schema in an MS AD. >> >> If you prepare an LDIF file, such as the one for Automount in >> the Wiki, I can test-import it here and see if it works. >> >> >> Regards, Marc >> > > Hi Marc, it probably wont work ;-) Well, not as is, when I tried > adding schema extensions, I had to add the attributes first, then > the objectlasses, I couldn't add them all in one go. > > Rowland >- -- Stefan Kania Landweg 13 25693 St. Michaelisdonn Signieren jeder E-Mail hilft Spam zu reduzieren. Signieren Sie ihre E-Mail. Weiter Informationen unter http://www.gnupg.org Mein Schlüssel liegt auf hkp://subkeys.pgp.net -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iEYEARECAAYFAlgVq9MACgkQ2JOGcNAHDTbGSgCgyGY+PH72ePrW4YvTgtQpSlGi cPoAnjYy2t423t+hVD5flyVhqXAX25zd =0Xhx -----END PGP SIGNATURE-----
Hi, On 17 October 2016 at 17:36, Marc Muehlfeld via samba <samba at lists.samba.org> wrote:> Am 17.10.2016 um 18:16 schrieb Rowland Penny via samba: >> Well, not as is, when I tried adding schema extensions, I had to add >> the attributes first, then the objectlasses, I couldn't add them all in >> one go. >[...] > Are there any rules for the LDIF file, such as attribute first, > objectclasses later? >I've done this successfully (and indeed heavily use the new attributes and objectclasses I have added). I've got a .cmd batch file that does it automatically if run as a domain admin user (enterprise admin user?) on a DC.>From my batch file:ECHO Adding attributes ... CALL :ldifimport AD-my-attribs.ldif ECHO Forcing schema cache update ... CALL :ldifimport AD-schemaupdate.ldif ECHO Adding classes ... CALL :ldifimport AD-my-classes.ldif The contents of AD-schemaupdate.ldif is as follows: DN: changetype: modify add: schemaUpdateNow schemaUpdateNow: 1 - The whole process works automatically, I can share the batch file if it helps anyone. Cheers Jonathan -- "If we knew what it was we were doing, it would not be called research, would it?" - Albert Einstein