[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Configuring Solaris 8 clients



--On Wednesday, March 26, 2003 9:14 AM +0100 Ramon Corominas <rcorominas@citec.es> wrote:

Hi,

Where can I get documentation about configuring solaris clients ?

Thanks in advance,


Ramon,

I got it working in Solaris 9 in the following fashion:

To set up a Solaris 9 machine for LDAP instead of NIS, one simply needs to do the following:

edit /etc/nsswitch.ldap

Change the hosts: line from
hosts: ldap [blah.....] files
to
hosts: files dns

and then run this command:

ldapclient manual -a authenticationMethod=none -a defaultSearchBase=dc=stanford,dc=edu -a defaultServerList="ldap-test1.Stanford.EDU" -a domainName="stanford.edu" -a followReferrals=false -a serviceSearchDescriptor=passwd:cn=accounts,dc=stanford,dc=edu\?sub -a serviceSearchDescriptor=group:cn=accounts,dc=stanford,dc=edu\?sub

Of course, this only works for Stanford, but it gives you an idea how to configure it.



For Solaris 8:

1. Create /var/ldap/ldap_client_file
#
# Do not edit this file manually; your changes will be lost.Please use ldapclien
t (1M) instead.
#
NS_LDAP_FILE_VERSION= 1.0
NS_LDAP_SERVERS= 172.24.14.237:389
NS_LDAP_SEARCH_BASEDN= dc=stanford,dc=edu
NS_LDAP_AUTH= NS_LDAP_AUTH_NONE
NS_LDAP_TRANSPORT_SEC= NS_LDAP_SEC_NONE
NS_LDAP_SEARCH_REF= NS_LDAP_NOREF
NS_LDAP_DOMAIN= stanford.edu
NS_LDAP_EXP= 1045640377
NS_LDAP_SEARCH_DN= passwd:(cn=accounts,dc=stanford,dc=edu), group:(cn=accounts,d
c=stanford,dc=edu)
NS_LDAP_SEARCH_SCOPE= NS_LDAP_SCOPE_SUBTREE
NS_LDAP_SEARCH_TIME= 30


2.Create /var/ldap/ldap_client_cred:
#
# Do not edit this file manually; your changes will be lost.Please use ldapclient (1M) instead.
#
NS_LDAP_BINDDN= cn=accounts,dc=stanford,dc=edu

3. Edit /etc/nsswitch.conf so the passwd: line to read:

passwd: file ldap


4. tests:

/usr/bin/listuser


--Quanah

--
Quanah Gibson-Mount
Senior Systems Administrator
ITSS/TSS/Computing Systems
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html