[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: openldap, pam_ldap, accounts
On Fri, Dec 03, 1999 at 11:42:36AM +0000, John P. Looney wrote:
> On Thu, Dec 02, 1999 at 12:40:55PM -0500, Ben Collins mentioned:
> > > I am really really newbie with LDAP. Anyways I succeeded to install
> > > OpenLDAP, pam_ldap and succeeded to add account entries to LDAP. I can
> > > find entries from LDAP with ldapsearch. I used migrate perl scripts as
> > > help when adding login information to LDAP. I also compiled sshd with
> > > pam support. I also verified that sshd is searchig pam and ldap
> > > information from system syslogs (I am using RedHat 6.1). Now when
> > > logging to machine this kind of error message will appear to syslog.
> > > What might be the problem or what should I check for finding the
> > > possible problem ?
> > You will also need nss_ldap so that the system passwd calls can get the
> > user info. It's availabel from ftp.padl.com. After you compile and install
> > it, you need to add ldap to the passwd and group entries in
> > /etc/nsswitch.conf.
>
> Is it nessary to use ldap_pam AND ldap_nss ? I was just using ldap_nss &
> it wasn't working very well...
You can use nss_ldap by itself if you want. It just needs to have access
to the proper fields on the directory (password filed specifically).
--
-----------=======-=-======-=========-----------=====------------=-=------
/ Ben Collins -- ...on that fantastic voyage... -- Debian GNU/Linux \
` bcollins@debian.org - collinbm@djj.state.va.us - bmc@visi.net '
`---=========------=======-------------=-=-----=-===-======-------=--=---'