[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
RE: anyone using Irix clients?
Hi Greg,
I've been testing Irix clients for a few months now.
To get mine working I had to setup a proxyaccount with read access to
userPassword attributes and configured the clients to bind with that
account in /var/ns/ldap.conf.
I also had to add to ldap.conf:
regsub USERPASSWORD{{crypt\}|{CRYPT\}}{}
Other relevant entries (the only thing that's changed is the USERPASSWORD attribute):
table passwd.byname
filter_lookup (&(OBJECTCLASS=POSIXACCOUNT)(UID=%s))
filter_list (OBJECTCLASS=POSIXACCOUNT)
format "UID:**:UIDNUMBER:GIDNUMBER:GECOS:HOMEDIRECTORY:LOGINSHELL"
table shadow.byname
filter_lookup (&(OBJECTCLASS=SHADOWACCOUNT)(UID=%s))
filter_list (OBJECTCLASS=SHADOWACCOUNT)
require USERPASSWORD
format "UID:USERPASSWORD:SHADOWLASTCHANGE:SHADOWMIN:SHADOWMAX:SHADOWWARNING:SHADOWINACTIVE:SHADOWEXPIRE:SHADOWFLAG"
Check how the maps looks with nsadmin (ie nsadmin cat passwd).
-Steve
-----Original Message-----
From: Greg Matthews [mailto:g.matthews@itss.nerc.ac.uk]
Sent: Thursday, July 31, 2003 7:32 AM
To: openldap-software
Subject: anyone using Irix clients?
anyone got irix clients to work with openldap? the only info I've found
is at:
http://www.ccm.ece.vt.edu/~lscharf/samd/?topic=IRIX
but it has not been enough to get me going. I can see ldap stuff going
back and forth but authentication isnt working. does it require some of
the shadowaccount attributes? here is a typical user:
dn: uid=abc,ou=People,dc=my,dc=domain
uid: abc
cn: Alpha Bravo Charlie
objectClass: account
objectClass: posixAccount
objectClass: shadowAccount
objectClass: top
loginShell: /bin/bash
uidNumber: 500
gidNumber: 1000
homeDirectory: /users/abc
gecos: foo bar
userPassword:: *******************
any help greatly appreciated...
GREG
--
Greg Matthews
iTSS Wallingford 01491 692445