1) What should be placed in /etc/luma.conf and is there an equivalent
for a windows client installation?
2) Typing a character is a great step. Are you are able to type more
than one character? A single letter can be related to hundreds of users.
Also, how about host names where they all start with the first letter?
3)How do the templates get associated with the plugins? eg. We have a
sudoers object with various attributes. What makes the association of
this object and attributes to the user management plugin?
4)When is #luma most active?
5) Want to log change actions from all users of LUMA. This is in
context to question 1.
On Sat, 2005-05-14 at 15:58 +0200, Wido Depping wrote:
> On 5/14/05, Mark Young <myou@xxxxxxxxxxxxx> wrote:
> > I am pursuing the option of using LUMA for account management with a
> > corporate size OpenLDAP installation.
> >
> > I have a number of questions.
> > 1) Is there a recommended approach for enabling LUMA to be used by a non
> > technical account management staff. We have 4 full time that do account
> > creation, deletion, updates. I would like to give them access to only a
> > few of the plugins. I assume I could just remove the plugins that are
> > not needed. But I would also like to modify the user account management
> > plugin and mass user add plugin to address company specifics.
>
> Something like a kiosk mode would be interesting and quite simlpe to
> implement by Luma. It just needs a /etc/luma.conf. But for the time
> being deleting the plugin folders would do the same trick.
>
> Modifying the plugins effectively means forking an existing one and
> doing the needed changes. Depending on how familiar you're with Python
> and GUI programming with Qt, it's quite easily doable. Be aware, that
> Luma tries to be very strict with LDAP data handling, reflecting this
> in the classes representing these structures.
>
> If you need some help with this, simply write an email or come to our
> irc channel on Freenode. And if doing this yourself is not an option,
> simply contact me privately. I'm still a student and open for job
> opportunities ;)
>
> > 2) How does the LUMA browser plugin work with a larger user object
> > count, say 10000? Does the performance suffer? Is is easy to jump to the
> > end of the user list or does one have to scroll to the bottom?
>
> I haven't tried the plugin with these sizes, but it shouldn't be a
> problem. Only a minimum of information is retrieved for the browser.
> And Qt's ListView widget should be fine with 10.000 objects. Standard
> keyboard shortcuts like PageUp and PageDown work.
>
> The last release had a small feature added which eases the navigation
> a bit. If you type a letter, it would jump to the entry matching the
> character after the '=' of the rdn. Example:
> User presses 'c'. Instead of jumping to "cn=foo" the focus goes to
> "cn=collin".
>
> > 3)Can some explain the difference between between a plugin and a
> > template?
>
> A plugin is a specialized LDAP aware application, a template is for
> creating new objects in the browser. You name the template, add
> objectclasses/attributes and set default values.
>
> > 4)Has anyone done testing with sharing/syncing passwords with Openldap
> > and Active Directory? Any possibility that the samba interface could
> > supply this functionality? Any way to trigger an action to occur if the
> > accountPassword attribute is updated through LUMA? Like for a
> > centralized password reset for an end user? Is there a password rest
> > plugin available that could be given to a help line team for password
> > resets? The vision is to have a screen that would prompt for various
> > identification information, the execute the create random password
> > routine.
>
> I can't comment on that since I'm not familiar with Samba. But other
> people in #ldap and #luma on IRC may be able to help you.
>
> > 5) Is there any logging possible for account maintenance?
>
> Could you explain this a bit? Do you want to know what changes a
> certain operator did to users?
>
> mfg.
> Wido
-------------------------------------------------------
This SF.Net email is sponsored by Oracle Space Sweepstakes
Want to be the first software developer in space?
Enter now for the Oracle Space Sweepstakes!
http://ads.osdn.com/?ad_id=7393&alloc_id=16281&op=click
|
