[Freeipa-users] Using the freeipa 389 ds installation for own stuff
Simo Sorce
simo at redhat.com
Fri Dec 2 03:11:02 UTC 2011
On Fri, 2011-12-02 at 02:07 +0100, Johannes von Bargen wrote:
> Hi!
>
> The documentation strongly emphasises that the difference between
> freeipa and the pre 389 directory server
> (https://docs.fedoraproject.org/en-US/Fedora/15/html/FreeIPA_Guide/introduction.html#comparing).
> Does it lead to problems if I use the directiory server which is the
> backend for freeipa for other stuff, like postfix/dovecot users?
No it shouldn't as long as user/group creation is done through IPa you
shouldn't have issues.
You may need to write some customization if you need to add mandatory
attributes at user object creation but this has been previously
documented in this list.
We also have documents on how to extend the FreeIPA framework with new
modules in case you wish to create native management interfaces in
FreeIPA to manage the objects you need.
In order to better future-proof I also suggest you place custom objects
in a clearly named subtree (like cn=yourorgname) under the base suffix
so that you do not risk conflicts when we add new features in IPA in the
future.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-users
mailing list