Univention Bugzilla – Bug 50642
Replicate cn=IP Security,CN=System from Master Samba/AD to School Slave via OpenLDAP
Last modified: 2019-12-16 14:48:08 CET
We should replicate the container CN=IP Security,CN=System. Otherwise the default MS GP IP security are not syncronized between UCS and Samba 4. It's currently ignored in the global_ignore_subtree list. Patch: diff --git services/univention-s4-connector/conffiles/etc/univention/s4connector/s4/mapping.py services/univention-s4-connector/conffiles/etc/univention/s4connector/s4/mapping.py index ff2d20f244..8c1c890315 100644 --- services/univention-s4-connector/conffiles/etc/univention/s4connector/s4/mapping.py +++ services/univention-s4-connector/conffiles/etc/univention/s4connector/s4/mapping.py @@ -64,7 +64,6 @@ global_ignore_subtree = [ 'CN=Server,CN=System,@%@connector/s4/ldap/base@%@', 'CN=ComPartitionSets,CN=System,@%@connector/s4/ldap/base@%@', 'CN=ComPartitions,CN=System,@%@connector/s4/ldap/base@%@', - 'CN=IP Security,CN=System,@%@connector/s4/ldap/base@%@', 'CN=DFSR-GlobalSettings,CN=System,@%@connector/s4/ldap/base@%@', 'CN=DomainUpdates,CN=System,@%@connector/s4/ldap/base@%@', 'CN=Password Settings Container,CN=System,@%@connector/s4/ldap/base@%@', +++ This bug was initially created as a clone of Bug #49838 +++