[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: anyone actually attempt to turn on pam_ldap on Redhat 5.1 yet?

To: "'Blake Binkley'" <blake@netopolis.net>, <openldap-general@openldap.org>
Subject: RE: anyone actually attempt to turn on pam_ldap on Redhat 5.1 yet?
From: "Luke Howard" <lukeh@xedoc.com.au>
Date: Sun, 1 Nov 1998 10:57:26 +1100
Importance: Normal
In-reply-to: <363BA032.BF0B8F7C@netopolis.net>

> and if so do I have to reboot before it takes effect (I would rather
> not, as the machine I'm thinking of putting it on is
> currently 30 miles
> away, and would rather just try it out for functionality and
> what things
> (password) I may be missing before I turn it completely over

You should compile the Linux-PAM sample apps (eg. xsh), configure them to
use pam_ldap, configure /etc/ldap.conf, and then test them. You should also
leave a way to get in (eg. make pam_unix sufficient) for logins.

> as I was getting to above, I also would like to know what schemas are
> used to figure out login and password and shell and home directory for
> the login program

Read RFC 2307. Note that pam_ldap only requires that a user have an entry in
the directory which it can authenticate as; it doesn't assume the RFC 2307
schema.


-- Luke

Next by Date: LDAP and e-mail
Index(es):
- Chronological
- Thread