[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Performance of SGI nsd with LDAP
Juan Carlos Gomez <gomez@cthulhu.engr.sgi.com> writes:
> Luke,
>
> I followed the drafts for RFC2037...it must comply with the final version. If
> not this can
> be configured through an ASCII file. I tranferred this task to someone else
> here @ SGI
> before the RFC came out and I'm not sure if he sync'ed what we distribute with
> the
> RFC....hopefully he did!.
Last time I had a look (IRIX 6.5.3) the standard config file used
something close to rfc2307, but with "POSIX" as a prefix to almost
everything (POSIXUIDNUMBER, POSIXPRIMARYGIDNUMBER,....)
Besides, it didn't understand the {crypt}xxxxxxxx Syntax for passwords,
which means that you can either use that attrib to have users login to
the system (without {crypt}), or you can use it to authenticate to the
LDAP server (with {crypt}), but not both.
The (undocumented) "security"/"cipher" switches in the config file
didn't work as expected, either - I was unable to connect to a
SSL-proxied (sslwrap) OpenLDAP-Server (Besides, there doesn't seem to
be an option to list "trusted" Servers).
Perhaps you coould look into this or forward it.
Regards,
--
Jan Iven
Rechenzentrum, Universitaet des Saarlandes
Tel. ++49 +681 302-3623
Fax. ++49 +681 302-4462