Originally posted by: SystemAdmin

I am migrating users from nis to ldap. According to redbook sg247165 (Integrating AIX into Heterogeneous LDAP Environments) the developed ldap netgroup support in AIX 5.3 was backported to AIX 5.2ML04 and beyond. Has anyone configured this on AIX 5.2? In my test environment, authentication of ldap users against a rfc2307 compliant ldap works fine, but netgroup lookups from the ldap AIX 5.2 client seem not to happen at all. The +@netgroupname syntax in /etc/passwd is just being ignored. Can anyone confirm this functionality has indeed been backported to 5.2?
#AIX-Forum

Originally posted by: sit

I ran into the same thing in 5.2.

Per IBM, there's no LDAP-based netgroups support in 5.2 and
No plans to backport that piece either.

So
Them being ignored is an expected behavior :(
Sergey
#AIX-Forum

Originally posted by: SystemAdmin

Thanks, that is what I was afraid of..
Weird that the redbook specifically states it was backported to 5.2ML04

Do you have any url or email from IBM that confirms this?

Gert
#AIX-Forum

Originally posted by: sit

Exactly, Redbook is unclear.

Netgroups in local files, in fact, don't work either with LDAP auth.

It was over the phone as part of a PMR I had with them mostly about
inconsistent behavior of LDAP clients in different 5.3 TLs - some required NIS domainname set to work, some did't in our setup.

They sent me this How-To .html they use internally, but it's not digitally signed or anything.

1. Before you begin, you should ...

• Know that netgroup through LDAP is only supported on AIX 5.3 and later

....

Sergey
#AIX-Forum