[Date Prev][Date Next] [Chronological] [Thread] [Top]

tls, pam_ldap and /etc/passwd

To: "openldap-software@OpenLDAP.org" <openldap-software@OpenLDAP.org>
Subject: tls, pam_ldap and /etc/passwd
From: Christopher Walden <cmwalden@mythmade.com>
Date: Thu, 25 Apr 2002 09:46:31 -0500
In-reply-to: <3CC816DB.FF336B93@npi.stpn.soft.net>
References: <Pine.LNX.4.44.0204251034190.27413-100000@estate1.whitemice.org> <3CC816DB.FF336B93@npi.stpn.soft.net>

Greetings.

I have been banging my head against a problem for a while now, and I could use 
a hand.  Maybe you could help, or point me to help.

We have set up an openldap server running on RedHat Linux 7.2.  I have created 
a database and have more than one system working fine using the pam_ldap 
modules.  However, when I activate TLS, pam requires me to have a user to 
match the ldap user in the system's local /etc/passwd file.  This rather 
defeats my goals for using LDAP in the first place.

Basically if TLS is off, then everything works OK, pulling non-local users 
from LDAP.  If I turn TLS on, then LDAP will not authenticate unless there is 
a user in /etc/passwd.

It is entirely possible that this is performing as designed.  I have been 
unable to find any definitive statements on this.

Anything you could point me to would be greatly appreciated.

Regards,

Christopher Walden
Austin, TX

Follow-Ups:
- Re: tls, pam_ldap and /etc/passwd
  - From: Christopher Walden <cmwalden@mythmade.com>
- Re: tls, pam_ldap and /etc/passwd
  - From: Dan Parker <drpLO@helios.hampshire.edu>

References:
- Re: Modifying one attributes' value of all records to same value.
  - From: Adam Williams6 <awilliam@whitemice.org>
- Re: Modifying one attributes' value of all records to same value.
  - From: Upma Gandhi <upma@npi.stpn.soft.net>

Prev by Date: Re: Modifying one attributes' value of all records to same value.
Next by Date: RE: connections to slapd
Index(es):
- Chronological
- Thread