Red Hat Bugzilla – Bug 963281
[PATCH] Make object class configurable in openssh-ldap
Last modified: 2013-06-19 07:49:21 EDT
Created attachment 748358 [details]
Patch making object class filter configurable
The patch adding the openssh-ldap subpackage to OpenSSH does not allow object class to be configured. For sites not using posixAccount (for instance, using LDAP-driven SSH keys with locally-configured accounts), this is a showstopper.
The patch adding openssh-ldap appears to be maintained by Red Hat -- which is to say, there doesn't appear to be an upstream to which this change can be submitted.
See the attached patch which, when applied on top of Red Hat's openssh-ldap patch, makes the object class filter configurable.
openssh-6.2p2-3.fc19 has been submitted as an update for Fedora 19.