+++ /dev/null
-<samba:parameter name="ldap trust ids"
- context="G"
- advanced="1" developer="1"
- xmlns:samba="http://samba.org/common">
-<listitem>
-
- <para>Normally, Samba validates each entry in the LDAP server
- against getpwnam(). This allows LDAP to be used for Samba with
- the unix system using NIS (for example) and also ensures that
- Samba does not present accounts that do not otherwise exist.
- </para>
-
- <para>This option is used to disable this functionality, and
- instead to rely on the presence of the appropriate attributes
- in LDAP directly, which can result in a significant performance
- boost in some situations. Setting this option to yes effectivly
- assumes that the local machine is running <command
- moreinfo="none">nss_ldap</command> against the same LDAP
- server.</para>
-
- <para>Default: <command moreinfo="none">ldap trust ids = No</command></para>
-</listitem>
-</samba:parameter>
char *szLdapSuffix;
char *szLdapFilter;
char *szLdapAdminDn;
- BOOL ldap_trust_ids;
char *szAclCompat;
int ldap_passwd_sync;
BOOL ldap_delete_dn;
{"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
{"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
{"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
- {"ldap trust ids", P_BOOL, P_GLOBAL, &Globals.ldap_trust_ids, NULL, NULL, FLAG_ADVANCED},
{"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
{"Miscellaneous Options", P_SEP, P_SEPARATOR},
FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
-FN_GLOBAL_BOOL(lp_ldap_trust_ids, &Globals.ldap_trust_ids)
FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
/* New Interface is being implemented here */
+#if 0 /* JERRY - not uesed anymore */
+
/**********************************************************************
Initialize SAM_ACCOUNT from an LDAP query (unix attributes only)
*********************************************************************/
return True;
}
+#endif
/**********************************************************************
Initialize SAM_ACCOUNT from an LDAP query
}
+#if 0 /* JERRY -- not used anymore */
/*
* If so configured, try and get the values from LDAP
*/
}
}
}
+#endif
if (!smbldap_get_single_attribute(ldap_state->smbldap_state->ldap_struct, entry,
get_userattr_key2string(ldap_state->schema_ver, LDAP_ATTR_PWD_LAST_SET), temp))