[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: openldap, pam_ldap and user auth on debian 2.2

To: "Noel Koethe" <noel@koethe.net>, <openldap-software@OpenLDAP.org>
Subject: RE: openldap, pam_ldap and user auth on debian 2.2
From: "Alexandre Ghisoli" <alexandre.ghisoli@ycom.ch>
Date: Tue, 23 Jan 2001 16:46:20 +0100
Importance: Normal
In-reply-to: <Pine.LNX.4.21.0101231619590.24670-100000@data.wipol.uni-bonn.de>

Hello,

Usualy, create a ou=Person, then add user like :
uid=noel, ou=Person, o=cre, c=de

After all, define
userPassword={CRYPT}xx
uidNumber=100
gidNumber=100
uid=noel
cn=noel
homeDirectory=/home/noel

Take a look about examples at padl.com

Regards

	--Alexandre

> -----Original Message-----
> From: owner-openldap-software@OpenLDAP.org
> [mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Noel Koethe
> Sent: Tuesday, January 23, 2001 4:21 PM
> To: openldap-software@OpenLDAP.org
> Subject: openldap, pam_ldap and user auth on debian 2.2
>
>
> Hello,
>
> If this is a faq or I'm on the wrong list for this let me know.
>
> I want authentification via ldap. I installed openldap and pam_ldap and
> configured it this way:
>
> /etc/openldap/slapd.conf:
> ...
> database        ldbm
> suffix          "o=cre, c=de"
> directory       "/var/lib/openldap"
> lastmod on
> defaultaccess   read
> rootdn "cn=root, o=cre, c=de"
> rootpw root
> access to * by * read
> ...
>
> /etc/pam_ldap.conf:
> host 127.0.0.1
> base o=cre,c=de
> ldap_version 2
> binddn cn=root,o=cre,c=de
> bindpw root
> pam_crypt local
>
> - ldap entry:
> # ldapsearch -h 127.0.0.1 -b 'cn=noel,o=cre, c=de' \
> 'objectclass=account'
> cn=noel, o=cre, c=de
> cn=noel
> sn=koethe
> givenname=noel
> objectclass=person
> objectclass=uid
> objectclass=top
> objectclass=account
> objectclass=posixAccount
> objectclass=shadowAccount
> uidnumber=2000
> homedirectory=/home/noel
> st=nrw
> mail=noel@koethe.net
> loginshell=/bin/bash
> uid=noel
> creatorsname=cn=root, o=cre, c=de
> createtimestamp=20010122154403Z
> modifytimestamp=20010122154451Z
> modifiersname=cn=root, o=cre, c=de
> userpassword={crypt}JpOqKvXZGxRio
>
> /etc/pam.conf:
> login   auth required   /lib/security/pam_ldap.so
> telnet  auth required /lib/security/pam_ldap.so
>
> telnet:
> # telnet host
> login: noel
> Password:
> Connection closed by foreign host.
>
> --8<-- logfile:
> Jan 22 17:56:03 zwerg in.telnetd[6197]: connect from zwerg.cre.de
> Jan 22 17:56:06 zwerg slapd[5969]: conn=32 fd=13 connection from localhost
> (127.0.0.1) accepted.
> Jan 22 17:56:06 zwerg slapd[6199]: conn=32 op=0 BIND
> dn="CN=ROOT,O=CRE,C=DE" method=128
> Jan 22 17:56:06 zwerg slapd[6199]: conn=32 op=0 RESULT err=0 tag=97
> nentries=0
> Jan 22 17:56:06 zwerg slapd[6200]: conn=32 op=1 SRCH
> base="O=CRE,C=DE" scope=2 filter="(uid=NOEL)"
> Jan 22 17:56:06 zwerg slapd[6200]: conn=32 op=1 RESULT err=0 tag=101
> nentries=1
> Jan 22 17:56:06 zwerg slapd[6201]: conn=32 op=2 UNBIND
> Jan 22 17:56:06 zwerg slapd[6201]: conn=32 op=2 fd=13 closed errno=0
> Jan 22 17:56:06 zwerg slapd[5969]: conn=33 fd=13 connection from localhost
> (127.0.0.1) accepted.
> Jan 22 17:56:06 zwerg slapd[6202]: conn=33 op=0 BIND
> dn="CN=NOEL,O=CRE,C=DE" method=128
> Jan 22 17:56:06 zwerg slapd[5969]: conn=33 op=-1 fd=13 closed errno=0
> Jan 22 17:56:06 zwerg slapd[6202]: conn=33 op=0 RESULT err=0 tag=97
> nentries=0
>
> Anybody any idea to solve this problem?
>
> Thanks.
>
> --
> MvfG
> 	Noel
>

References:
- openldap, pam_ldap and user auth on debian 2.2
  - From: Noel Koethe <noel@koethe.net>

Prev by Date: openldap, pam_ldap and user auth on debian 2.2
Next by Date: Can't restirct display of attributes using ldaptemplate.conf
Index(es):
- Chronological
- Thread