LDAP sync frontend in v4.0.x
Michael Ströder
michael at stroeder.com
Thu Apr 27 10:21:31 CEST 2017
Arran Cudbard-Bell wrote:
> Fancied taking a break from refactoring in v4.0.x.
>
> https://github.org/FreeRADIUS/freeradius-server/blob/v4.0.x/raddb/sites-available
> /ldap_sync
>
> The idea is that you can "listen" on DNs within your LDAP directory.
>
> You then use the updates you receive to create/invalidate cache entries, or send
> CoA/DM messages to reflect the changes that have occurred in LDAP.
Nifty feature.
But please put a fat note into the comments that the syncrepl client will not see an
entry getting deactivated if server-side ACLs make deactivated entries invisible to the
syncrepl client. (That's the reason why I don't use syncrepl in Æ-DIR clients.)
Ciao, Michael.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3829 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20170427/c3670311/attachment.bin>
More information about the Freeradius-Users
mailing list