https://bugzilla.novell.com/show_bug.cgi?id=304698#c6
--- Comment #6 from Ralf Haferkamp
## namedObject is needed for groups without members objectclass ( 1.3.6.1.4.1.5322.13.1.1 NAME 'namedObject' SUP top STRUCTURAL MAY cn )
Which raises the question whether I should always use namedObject.. You could, but then you could also just continue to use nis.schema. The real benefit for rfc2037bis is that you can "groupOfNames" combined with "posixGroup". "namedObject" is just a kludge to be able to have groups without a member (something that "groupOfNames" does not allow). Using "namedObject" and "groupOfNames" together is no possible because it violates the "only one structual objectclass per Object" rule of LDAP.
or even convert (in my scripts) from namedObject to groupOfNames once a member is added to the group. That might be the better approach. (YaST works does it this way)
-- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.