[Date Prev][Date Next] [Chronological] [Thread] [Top]

PAM LDAP authentification

To: openldap-software@OpenLDAP.org
Subject: PAM LDAP authentification
From: "Sean O'Malley" <omalleys@eclipse.cl.msu.edu>
Date: Tue, 28 Jan 2003 10:28:20 -0500 (EST)
In-reply-to: <3E36BEE7.2060801@aynet.dyndns.org>

I havent seen any documentation or notes on this and I apologize if I may
have missed it somewhere. 

Is it possible to authenicate users on the ldap server via pam instead of
SASL. If that isn't clear enough. We don't have any passwords except the
admin stored in our LDAP database because we are using AFS, we have the
NIS schema loaded for all of our users. We are using pam_afs/ldap to
take care of auth for samba/netatalk/ftp/etc which works great. 

The problem comes when we start to look at users editing their personal
information ie phone, gecos, etc, because they don't have a password IN
the LDAP database it is store on the AFSDB server. 

It looks like we could use Kerberos IV/SASL but that adds another piece
to the complexity of the configuration which we would kind of like to
avoid. 

Sean 

--------------------------------------
  Sean O'Malley, Information Technologist
  Michigan State University
-------------------------------------

References:
- Open LDAP on HP-UX
  - From: Anthony Dean <void@aynet.dyndns.org>

Prev by Date: Open LDAP on HP-UX
Next by Date: OpenLdap win32 compilation problems
Index(es):
- Chronological
- Thread