[rhos-list] Openstack LDAP/AD integration at CERN
Jose Castro Leon
jose.castro.leon at cern.ch
Wed Sep 12 19:24:20 UTC 2012
Sorry, I mean organizationalRole. When adding a user to a role it creates a structure like this:
Tenant (groupOfNames)
| @member(user)
|
--> Role (organizationalRole)
@roleOccupant (user)
The problem is that on AD a organizationalRole could not be a children of a groupOfNames
This is why we modify the AD schema a bit, in order to make it work
Kind regards,
Jose Castro Leon
More information about the rhos-list
mailing list