[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: OpenLDAP in Solaris 8



Hehe - he's probably right (I wrote it...)

I'd be interested in success stories of using PADLs library against the
Solaris 8 native LDAP libraries - ship as little changed as possible, right?

It is a NIS+ problem BTW.

Regards, 
Phil 

+----------------------------------+ 
| Phil Mayers, Network Support     | 
| Centre for Computing Services    | 
| Imperial College                 | 
+----------------------------------+ 


-----Original Message-----
From: phil@bolthole.com [mailto:phil@bolthole.com]
Sent: 06 July 2001 16:19
To: openldap-software@OpenLDAP.org
Subject: Re: OpenLDAP in Solaris 8


On Fri, Jul 06, 2001 at 09:28:34AM +1000, Geoff Collin wrote:
> A native Solaris pam_unix and openldap.2.0.11 problem.
> 
> Followed instructions kindly provided in 
> http://blacklotus.cc.ic.ac.uk/~pjm3/solaris8_ldap.html
> and friends.
> 

you really dont want to do that.

use the PADL pam_ldap module, as detailed in
http://www.bolthole.com/solaris/LDAP.html
 ( The URL gives explicit pam.conf instructions)

That way, your passwords will be encrypted over the wire.


> All goes well until it finally sort of works - server finds the user and
> returns encrypted password. The connection is then terminated
> immediately. The only clue I've got at the moment is an entry in
> /var/log/authlog
> 
>   Jul  6 08:39:23 europa login: [ID 432192 auth.alert]
>   User gco needs Secure RPC credentials to login.

sounds like you somehow have convinced the OS to half-way use nisplus.
look at /etc/nsswitch.conf as well as pam.conf