I am trying to integrate a PGP server (symantec encryption server) with UCS OpenLDAP
When the server tries to enrol a user, it searches for the user by email address, using the ‘mail’ attribute
Here is an example from the debug log
Jul 5 16:08:02 testcontrol slapd: conn=1627 op=1 SRCH base=“dc=julian,dc=domain,dc=co,dc=uk” scope=2 deref=0 filter="(firstname.lastname@example.org)"
However, this comes up with no results, since the email address is actually in the mailPrimaryAddress attribute
There is no way to make the PGP server search using mailPrimaryAddress instead.
Before I dig in and attempt “Packaging LDAP Schema Extensions” in the manual, perhaps someone can point me to an easier way?