[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: nss_ldap modul and Solaris 2.6
On Sat, 11 Sep 1999, Erik Heim wrote:
> This question(s) is not a pure ldap question, but i hope
> that i will get some answers nevertheless.
Please consider searching the mailing list archives - this one's rapidly
becoming a FAQ. One possible lead:
http://www.openldap.org/lists/openldap-general/9908/msg00097.html
> Now we tried to build the nss-ldap85 module. Compilation and installation
> works fine, but we think the nss_ldap.so.1 library is not used if we do a
> login for a user which is only in the ldap-database an not in /etc/passwd.
For lookups, you need to configure NSS. For authentication, you need to
configure PAM. If either is not configured, things will break (unless you
otherwise provide an alternative naming/auth service for those users).
> The file /etc/nsswitch.conf is modified as:
> passwd: files ldap
> group: files ldap
That's naming/lookup services - does not cover authentication. "nss_ldap"
only supports naming/lookup services; for authentication you also need to
install "pam_ldap".
> We also found, that the file /etc/ldap.conf will only be installed for
> Makefile.linux.* und Makefile.RPM. Is there no need for this file on
> Solaris??
You still need the file, yes; don't just rely on the sample configurations
supplied in the nss_ldap/pam_ldap packages - if you do, things will break.
Use the sample configurations as a guide for how to configure your own system
accordingly (at times, this can mean staring for hours at the relevant man
pages until things make sense - but eventually, it can be made to work).
> We also create a /etc/ldapd.conf file. But nothing changed.
NSS lookups won't become active until you restart Solaris' nscd;
authentication won't work at all unless you also install pam_ldap.
> Is there anyone who works with Solaris2.6 and the nss_module?
See the above URL - it definitely works under Solaris 2.6, both talking to an
OpenLDAP directory and talking to a NetWare/NDS box using LDAP.
Cheers..
dave