From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <fweimer@redhat.com>
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124])
	by sourceware.org (Postfix) with ESMTPS id 09AD33858C52
	for <libc-help@sourceware.org>; Fri, 23 Sep 2022 05:14:57 +0000 (GMT)
DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org 09AD33858C52
Authentication-Results: sourceware.org; dmarc=pass (p=none dis=none) header.from=redhat.com
Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=redhat.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
	s=mimecast20190719; t=1663910096;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 in-reply-to:in-reply-to:references:references;
	bh=dMytz223FpDFdlQa/NEvdF9WSsfu0JQxyNEAy6rizCI=;
	b=J3C0K1iZWz//cgtqmiipG9C+Jgo5jSqP1+dojCtblxCW7PuKGI5lBsVSllKU3+5X0O75oV
	IIzBL1DxeVfZU3BBGBSObp2BP3a88tjQ+53wKNxrRoagdEeH8ZT3I5KxfjIpg7eB2MAll0
	ALFM4BCoj6ACQ8g8tW0lnEn3sWETj9c=
Received: from mimecast-mx02.redhat.com (mx3-rdu2.redhat.com
 [66.187.233.73]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 us-mta-132-dRxUxh6eO72aMa4epWXNwg-1; Fri, 23 Sep 2022 01:14:54 -0400
X-MC-Unique: dRxUxh6eO72aMa4epWXNwg-1
Received: from smtp.corp.redhat.com (int-mx06.intmail.prod.int.rdu2.redhat.com [10.11.54.6])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mimecast-mx02.redhat.com (Postfix) with ESMTPS id E164629324A2;
	Fri, 23 Sep 2022 05:14:53 +0000 (UTC)
Received: from oldenburg.str.redhat.com (unknown [10.39.192.26])
	by smtp.corp.redhat.com (Postfix) with ESMTPS id 131E22166B26;
	Fri, 23 Sep 2022 05:14:52 +0000 (UTC)
From: Florian Weimer <fweimer@redhat.com>
To: Stef Bon via Libc-help <libc-help@sourceware.org>
Cc: Stef Bon <stefbon@gmail.com>
Subject: Re: Howto determine a shared/network source of users and groups is
 active?
References: <CANXojcwngshK5GsswWLOo8UKX__8eFs7a5bCa9B9RnS3rfL+-g@mail.gmail.com>
Date: Fri, 23 Sep 2022 07:14:51 +0200
In-Reply-To: <CANXojcwngshK5GsswWLOo8UKX__8eFs7a5bCa9B9RnS3rfL+-g@mail.gmail.com>
	(Stef Bon via Libc-help's message of "Thu, 22 Sep 2022 15:40:35
	+0200")
Message-ID: <87v8peekok.fsf@oldenburg.str.redhat.com>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)
MIME-Version: 1.0
X-Scanned-By: MIMEDefang 3.1 on 10.11.54.6
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: redhat.com
Content-Type: text/plain
X-Spam-Status: No, score=-5.5 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_LOW,SPF_HELO_NONE,SPF_NONE,TXREP autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org
List-Id: <libc-help.sourceware.org>

* Stef Bon via Libc-help:

> I can write an utility which
> scans every line in /etc/nsswitch.conf and test for words like ldap in
> the line starting with passwd: and group: (and also for sss).
> If found test it's working and also active on the server.
> Maybe you see, this is a lot of work, and testing of all kinds of possibilities.
> Is there a simpler way to do that? To get an unique id per user/group
> database or something like that.

Don't you also want to check that they use the *same* LDAP database?
This seems to be something that needs FreeIPA or perhaps Kerberos
support, so I'd suggest to ask on those lists.

Thanks,
Florian