[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: openldap, pam_ldap, accounts

To: OpenLDAP-general@OpenLDAP.org
Subject: Re: openldap, pam_ldap, accounts
From: "John P. Looney" <jplooney-ldap@online.ie>
Date: Fri, 3 Dec 1999 14:55:16 +0000
In-reply-to: <19991203092643.D19972@lappy.djj.state.va.us>; from bcollins@debian.org on Fri, Dec 03, 1999 at 09:26:43AM -0500
References: <38467710.676515A1@wipsl.com> <19991202124055.C16082@lappy.djj.state.va.us> <19991203114236.B23668@online.ie> <19991203092643.D19972@lappy.djj.state.va.us>
User-agent: Mutt/1.1.1i

On Fri, Dec 03, 1999 at 09:26:43AM -0500, Ben Collins mentioned:
> > > You will also need nss_ldap so that the system passwd calls can get the
> > > user info. It's availabel from ftp.padl.com. After you compile and install
> > > it, you need to add ldap to the passwd and group entries in
> > > /etc/nsswitch.conf.
> >  Is it nessary to use ldap_pam AND ldap_nss ? I was just using ldap_nss &
> > it wasn't working very well...
> You can use nss_ldap by itself if you want. It just needs to have access
> to the proper fields on the directory (password filed specifically).

 As in, the LDAP server would have to run as root (it does anyway at the
moment) ? I'd like to do this "The one true way", if possible...so feel
free to lecture me :)

John

-- 
Microsoft. The best reason in the world to drink beer.
http://www.redbrick.dcu.ie/~valen

References:
- openldap, pam_ldap, accounts
  - From: root <dummy@wipsl.com>
- Re: openldap, pam_ldap, accounts
  - From: Ben Collins <bcollins@debian.org>
- Re: openldap, pam_ldap, accounts
  - From: "John P. Looney" <jplooney-ldap@online.ie>
- Re: openldap, pam_ldap, accounts
  - From: Ben Collins <bcollins@debian.org>

Prev by Date: Re: openldap, pam_ldap, accounts
Next by Date: Re: openldap, pam_ldap, accounts
Index(es):
- Chronological
- Thread