[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Using ldap server to replace shadow password

Earlier today, Michael J. Maravillo wrote:

> RedHat uses PAM (Pluggable-Authentication-Module) for user
> authentication.  There's an LDAP aware PAM module called pam_ldap at
> http://www.padl.com/software.html

You'll also need the NSS_LDAP module unless you're going to populate your
/etc/passwd and /etc/shadow files, keeping them periodically in-sync with your
LDAP directory (using the NSS_LDAP module means you can throw everything in
LDAP and not put those users in /etc/passwd+/etc/shadow).