[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ssh with ldap authentication

To: openldap-technical@openldap.org
Subject: Re: ssh with ldap authentication
From: Tim Watts <tw@dionic.net>
Date: Wed, 06 Mar 2013 09:16:55 +0000
In-reply-to: <1362533358.3236.YahooMailNeo@web141203.mail.bf1.yahoo.com>
References: <0971982CF6B9AB418FFD5FEF7F50CB9F05CB2DCB@IAD-WPRD-XCHB03.corp.verio.net> <51364C45.3020507@dionic.net> <1362533358.3236.YahooMailNeo@web141203.mail.bf1.yahoo.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130106 Thunderbird/17.0.2

On 06/03/13 01:29, Joe Phan wrote:

Hi Tim/Rodney,

I have a question related to Rodney's question.  Hope that you or
someone can help, it is greatly appreciated.
I tried to configure PAM for rlogin from Client machine which I expect
to authenticate user credential on the LDAP Server.  It always fails.
I haven't configured security for SASL/TLS between Client/Server LDAP.
Do I need to configure SASL/TLS in order for PAM to work?


Hi,

In short, no - unless you have configured the server to *require* TLS.

PAM makes no special requirements except what you configure in/etc/pam.d/ and pam_ldap.conf (or equiv).

The rest of your message will take some thinking - I'll try to have alook later - but I'm not familiar with rlogin.


Cheers

Tim

--
Tim Watts
Personal Blog:                          http://squiddy.blog.dionic.net/

http://www.sensorly.com/ Crowd mapping of 2G/3G/4G mobile signal coverage

References:
- ssh with ldap authentication
  - From: "Rodney Simioni" <rodney.simioni@verio.net>
- Re: ssh with ldap authentication
  - From: Tim Watts <tw@dionic.net>
- Re: ssh with ldap authentication
  - From: Joe Phan <joeanhphan@yahoo.com>

Prev by Date: Re: ssh with ldap authentication
Next by Date: Userpasswords stored in plain text
Index(es):
- Chronological
- Thread