Bug#61210: [Pkg-shadow-devel] Bug#61210: Is really adding users to LDAP, Kerberos, NIS the job of useradd?
Christian Perrier
Christian Perrier <bubulle@debian.org>, 61210@bugs.debian.org
Fri, 13 May 2005 18:38:58 +0200
tags 61210 wontfix
thanks
> > In my opinion, adding accounts in all these systems is the job of
> > their respective utilities (think about systems using winbind to
> > authenticate users in Windows domains...do we *really* want useradd t=
o
> > be able to add Windows domain accounts=A0? How will it provide all th=
e
> > extra information these systems may require)
> >=20
> > In my opinion, such change is a real dream...and probably not likely.
>=20
> Wait a minute. Isn't the submitter asking (in 2000) for PAM to come tru=
e?=20
> If you use pam_ldap.so instead of pam_unix.so in /etc/pam.d/passwd, the=
flat
> unix files won't get modified, but the ldap tree will, won't it?
Well, no. Doing so will allow passwd to change a password in the LDAP
backend, but will not allow useradd to add an entry in the LDAP
backend.
The more I read this bug, the more I think this suggestion is
irrelevant. useradd should remain a low-end tool to deal with
passwd/shadow name services.
Hence, tagging the bug as wontfix while I wait for more comments if
someone wants to convince me..:-)