Displaying 3 results from an estimated 3 matches for "mr_passthru".
Did you mean:
moh_passthru
2024 Dec 13
1
RODC in DMZ
...s,
>
> Many thanks for sending such a detailed answer. Really helpful and I
> guess a good fit for our situation. I was worried that it?d been
> complicated as I have never played around with OpenLDAP.
There is one limitation I forgot to mention: in my config there is a
module "mr_passthru", it is required if you want to do Microsoft
LDAP_MATCHING_RULE_IN_CHAIN queries, e.g. for nested group membership
lookups: "(memberof:1.2.840.113556.1.4.1941:=CN=...) ".
Openldap does not support these by default.
If you don't need it: simply disable the module "mr_pass...
2025 Jan 19
1
RODC in DMZ
Op 29-12-2024 om 20:29 schreef Stefan Kania via samba:
>
>
> Am 13.12.24 um 14:38 schrieb Kees van Vloten via samba:
>> There is one limitation I forgot to mention: in my config there is a
>> module "mr_passthru", it is required if you want to do Microsoft
>> LDAP_MATCHING_RULE_IN_CHAIN queries, e.g. for nested group membership
>> lookups: "(memberof:1.2.840.113556.1.4.1941:=CN=...) ".
>>
>> Openldap does not support these by default.
>
> OpenLDAP supports nes...
2024 Dec 13
1
RODC in DMZ
Der Rowland,
We share that concerns actually and of course if there is a way to avoid
it, it is always better. Another fellow suggested us an LDAP-Proxy
instead (personally have never setup one). What we actually need in our
case scenario, is only that service and not the rest of bells and
whistles of an RODC.
I just was wondering if someone had experience with what happens if one
does