Project

General

Profile

Actions

Feature #12458

open

Use "unixHomeDirectory" instead of "homeDirectory" when LDAP authentication server is Active Directory

Added by Charles Hamilton about 2 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Authentication
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Default

Description

In many Active Directory environments, homeDirectory is a UNC path to an SMB/CIFS shared folder, e.g.,

\\someserver\homeshare\username

If shell authentication is configured on pfSense, and the Active Directory homeDirectory attribute is set, then the pfSense home directory ends up being whatever the homeDirectory attribute is -- in cases where it's a UNC path, you get something like this:

/\\someserver\homeshare\username

The unixHomeDirectory posix attribute exists to distinguish between the two types. In cases where the LDAP auth server is Active Directory, the unixHomeDirectory attribute should be used. Alternatively, it would be nice to be able to specify which attribute to use for home directories when configuring LDAP authentication.

No data to display

Actions

Also available in: Atom PDF