Both helper functions should install its new users and groups into ldap, if the current installation uses it to authenticate users. Some ways I figured out to make this possible: 1) write scripts that checks which way of authentication is used, and performs user/group creation, and other actions related the user/group management. This doesn't look too hard to do, and can be used further by system administrators to create/modify user/group accounts. A file could handle the needed configurations for this scripts. 2) have a variable set into make.conf that tells portage to include users into ldap (maybe this variable should acctually point which authetication systems portage should include). Another variables should manage binddn/password/suffix for user/group creation. The drawback is that user management must be made by sysadmins by hand inside ldap server. The advantages of this are less need for management in systems, and maybe more ease in user administration of a gentoo system.
enew{user,group} simply uses {user,group}add that means you make {user,group}add ldap aware, not the enew{user,group} functions
Is that your plan for all of glep 27 ( nis, ldap, etc ) ?
