[Date Prev][Date Next] [Chronological] [Thread] [Top]

Password-less operation

To: openldap-technical@openldap.org
Subject: Password-less operation
From: Jean-Luc Wasmer <openldap@2012.jl.wasmer.ca>
Date: Tue, 7 Feb 2012 18:22:33 -0500
Content-disposition: inline
User-agent: Mutt/1.4.2.3i

Hi,

The user db on my system is stored in LDAP and integrated with PAM and NSS. The LDAP db also contain address book data for each user. I would like to be able to call ldap utilities (e.g. ldapsearch) without having the user to enter his/her password everytime. I would also like for scripts running as those users to have access to the respective LDAP entries. I noticed ldapsearch supports SASL binds, so I was wondering if that could be used in conjunction with Kerberos to accomplish my goal (from what I understand, the kinit command would have to be called before ldapsearch). Is there any other way to do this?

Thanks,
Jean-Luc

Follow-Ups:
- Re: Password-less operation
  - From: Quanah Gibson-Mount <quanah@zimbra.com>
- Re: Password-less operation
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: Re: Is putting slapd into read-only mode sufficient for backups?
Next by Date: Re: ldapmodify is crashing the slapd process
Index(es):
- Chronological
- Thread