Kevin,
We have our servers setup with the -C <config> option to run several Cyrus
processes on 1 sever. I think you are very familiar with the setup, because I
remember you may have something similar.
At any rate, the way our LDAP directory is setup is very logical, according to
departments and units. Up until now, we have setup 1 Cyrus virtual server for
every department. All of the departments until now have had several hundred
users in its context, so this hasn't been a problem or a waste of an IP
address from our perspective.
We now have a situation where 1 unit, containing several departments, does not
have enough users to warrant setting up a virtual server for each sub-division
- however, from an administrative perspective, these sub organizations need to
be under different context in the directory. For instance:
o=FAS
ou=Departments
ou=History
ou=users <--1 Cyrus server
ou=Economics
ou=users <--1 Cyrus server
ou=Languages <--1 Cyrus server that searches recursively (100 users
total)...
ou=Italian
ou=users <--20 users
ou=German
ou=users <--20 users
ou=Spanish
ou=users <--60 users
So, as long as we do not have duplicate usernames under the "Languages" base
dn, than I can have 1 Cyrus virtual server that points at
"ou=Languages,ou=Departments,o=FAS" and serve all the users under this context
on 1 Cyrus server, but for other administrative purposes, the users would be
separated logically by their sub department under the Languages unit.
I am not too familiar with the LDAP_SCOPE_SUBTREE function. I will have to
look at some examples to see how to utilize this.
Thanks for your help.
-John
"Kevin M. Myer" wrote:
> John,
>
> The LDAP patch that does filtering should allow you to recursively search
> a directory tree, although I don't have a working setup using that patch -
> thats just an assumption looking at the source code. I'm basing this
> wholly on the fact that for searches with filters, its specifying
> LDAP_SCOPE_SUBTREE as the scope, so that should be what you are looking
> for.
>
> I'm curious - what directory layout would require you to recursively
> search a directory tree? Or maybe stated another way: why do you need a
> patch that does this?
>
> Kevin
>
> On Fri, 12 Oct 2001, John C. Amodeo wrote:
>
> > Greetings,
> >
> > Does anyone know if the Sasl patch from Sourceforge (Simon & Menard)
> > supports recursive LDAP searching capabilities - or simply single
> > context searching.
> >
> > I am interesting in a sasl-ldap patch that will traverse a hierarchy.
> > Anyone know of such?
> >
> > Thanks for your help.
> >
> > -John
> >
>
> --
> Kevin M. Myer
> Systems Administrator
> Lancaster-Lebanon Intermediate Unit 13
> (717)-560-6140
--
______________________________________________
John C. Amodeo, Associate Director
Information Technology and Computer Operations
Faculty of Arts & Sciences, Rutgers University
732.932.9455-voice 732.932.0013-fax
