directory-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Paul Johnston <paul.johns...@pentest.co.uk>
Subject Re: Service accounts
Date Fri, 12 Sep 2014 15:09:32 GMT
Hi,

I would use simpleSecurityObject, but that is an auxiliary class, so I
also need a structural class.

Reason for asking here is that I expect a service account is a common
requirement, so I was hoping someone would have practical experience.

Thanks for the suggestions,

Paul


On 12/09/2014 15:48, Emmanuel Lécharny wrote:
> Le 12/09/14 16:15, Paul Johnston a écrit :
>> Hi,
>>
>> Thanks Emmanuel. I guess that is an option, but it has a number of compulsory 
>> fields (e.g. uidNumber) that don't really apply to this account. Any other ideas?
> The thing is to know what AttributeType you want to store in this
> ObjectClass. Typically, if a userPassword is a requirement, then you
> have a chice between those ObjectClasses :
>
> - dmd
> - domain
> - organization
> - organizationalUnit
> - person
> - posixAccount
> - posixGroup
> - shadowAccount
> - simpleSecurityObject
>
> Here, I can't really help, it's really up to you to define what you need.
>
> Last, not least, you can create your own ObjectClass and add the needed
> AttributeType into it.
>

-- 
Pentest - The Application Security Specialists
*Shortlisted for Best Security Company, SC Magazine Europe 2014*

Pentest Limited
Paul Johnston - IT Security Consultant
Office 	: +44 (0) 161 233 0100
Mobile 	: +44 (0) 7817 219 072
Email policy 	: http://www.pentest.co.uk/legal.shtml#emailpolicy
Registered Number: 	: 4217114 England & Wales
Registered Office: 	: 26a The Downs, Altrincham, Cheshire, WA14 2PU, UK
Certifications 	: ISO 9001 (50155) / ISO 27001 (IS 558982) / Tiger Scheme


Mime
View raw message