[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
OpenLDAP session authentication
- To: openldap-technical@openldap.org
- Subject: OpenLDAP session authentication
- From: Erik Lotspeich <erik@lotspeich.org>
- Date: Thu, 23 Sep 2010 12:27:42 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lotspeich.org; s=200804; t=1285262868; bh=brE+fKsWCqXsYKYqSVouKJ/VPVITBN2xMhyocGNd3kA=; h=Message-ID:Date:From:MIME-Version:To:Subject:Content-Type: Content-Transfer-Encoding; z=Message-ID:=20<4C9B8E0E.8020708@lotspeich.org>|Date:=20Thu,=2023= 20Sep=202010=2012:27:42=20-0500|From:=20Erik=20Lotspeich=20<erik@l otspeich.org>|User-Agent:=20Thunderbird=202.0.0.24=20(X11/20100302 )|MIME-Version:=201.0|To:=20openldap-technical@openldap.org|Subjec t:=20OpenLDAP=20session=20authentication|X-Enigmail-Version:=200.9 6.0|Content-Type:=20text/plain=3B=20charset=3DUTF-8|Content-Transf er-Encoding:=207bit; b=CJ9p36JuiI6Beb7FgDU1wY37VQBzYQsbefGqkfTsm6kXJVAZ5ozUv4Bf98aX4tuh/ PzWXqu5BEdc5J5IXJ/Uzxuf+M9JctQVAu/PZMvFrKWlEHDGBQcl/O37tAuqb5Xtx0U ZH4fVQv2i+HrMmbbGzPT0gMmV2BZO77TB1mnhMlo=
- User-agent: Thunderbird 2.0.0.24 (X11/20100302)
Hi,
I have looked around for the answer to this question and the solution
wasn't obvious to me...
I have an OpenLDAP installation that I use as an addressbook. I do not
use OpenLDAP for authentication on my network. I am using it on an
internal network with anonymous read-only access.
I would like to require user-level authentication and I would like to
authenticate access to the LDAP database using system users in
/etc/passwd. Is this possible?
For authorization, I would like a few users to have read/write access
and others to be read-only. I would like to disallow anonymous access
to the database.
I have SSL/TLS set up now and that works; I would like to be able to
turn off all non-SSL access to the database once the
authentication/authorization is set up.
Regards,
Erik