Lennart Poettering

So, I'd be happy if we say something like: | Range | Purpose |------------|--------| |65536…458751 | Networked/Organizatio-wide UID assignments for regular users (IPA, SSSD, LDAP, …) | |458752…524287 | Unused...

See https://github.com/systemd/systemd/pull/30846#issuecomment-1884506830 btw, for a whole thread with the IPA folks about this. It was a trainwreck. abbra is an IPA dude.

> Hello, > > I do not fully understand this concept. We lived without it for decades. But if it is really needed, how about making the ranges configurable? For...

> I still cannot understand why should not there exist a configuration file, where the administrator would be able to define his own UID plan. This would lead to all...

> Can we reserve 10M from this 1800M range for normal users? > > **1879048192…2147352575 | 0x70000000…0x7FFDFFFF | 1879048192 | unused** > Send a pr and we can discuss it....

And also of course the ipa folks never showed interest in allocating from such a uid subset by default anyway. So even if we define a second (high uid) range...

> I do not fully understand you point. What do you mean by reporting correct user records to systemd? Where should I set disposition field? Should it be recorded as...

> [@poettering](https://github.com/poettering) To clarify, the user database stack has to report individual, complete user records to systemd with the disposition field set? I am not sure what you mean by...

> Are you kidding me? I have central user management in ldap. Should I create another json file and distribute it on all the machines around? No, certainly not. It's...

> Even better, so the administrator should develop software to provide some api for the system to work correctly? you developed your ldap client yourself? if so, then yes, implement...