site_archiver@lists.apple.com Delivered-To: darwin-dev@lists.apple.com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all, $ dscl /NDS/PROSOFT -authonly frodo.users Password: $ dscl /NDS/PROSOFT/frodo.users -read / PrimaryGroupID: c7590d23 AccountName: frodo UniqueID: c7590d23 NodePath: NDS PROSOFT frodo.users UserShell: /bin/bash AuthenticationAuthority: ;LocalCachedUser; GeneratedUID: 00D61774-D651-D811-B0B8-0004757FF7AD RecordType: Users RealName: Frodo Baggins $ What I need to do: Here's the DS Requests that I currently respond to: kOpenDirNode kCloseDirNode kGetDirNodeInfo kGetAttributeEntry kGetAttributeValue kDoDirNodeAuth kCloseAttributeList kCloseAttributeValueList kDoDirNodeAuthOnRecordType Any pointers would be greatly appreciated. Thanks. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (Darwin) iD8DBQFEYRIredHYW7bHtqIRAnkmAJ9NcXIs0E5SUSYrzxphG8P4JikJxwCfaR+u afPG31K36Dg8jnAJuwdxtEg= =Ur9A -----END PGP SIGNATURE----- _______________________________________________ Do not post admin requests to the list. They will be ignored. Darwin-dev mailing list (Darwin-dev@lists.apple.com) Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/darwin-dev/site_archiver%40lists.appl... So I've got a DirectoryServices plugin going and I can do authentication to the remote DS server: How do I now turn this user record into a local cached user so that a user can actually login to the GUI using only the remote DS credentials? Create local user record. Create local user home directory. Mount network home directory for file access (this part is easy once I know where to do it). Also, regarding the UID/GID, I'm assuming a ID space of 0-2^31. In the above example, the UID/GID is a hash of the UUID string. Is this a valid # for Tiger/Panther or is the ID space limited to 2^16? As you can see I'm implementing the bare minimum to get auth working. This is not meant to provide full blown access to the remote DS. This email sent to site_archiver@lists.apple.com