[KLUG Members] user sign on to authenticate against LDAP?
Scott Thurmond
members@kalamazoolinux.org
Fri, 28 Sep 2001 08:52:01 -0400
I didn't share the full story... sorry.
The LDAP server is running on Novell NDS. I guess my question should have
been - How do I tell my linux box to authenticate against a remote LDAP
server? Is the answer still the same?
-Scott
-----Original Message-----
From: members-admin@kalamazoolinux.org
[mailto:members-admin@kalamazoolinux.org]On Behalf Of Adam Williams
Sent: Thursday, September 27, 2001 4:47 PM
To: KLUG Members
Subject: Re: [KLUG Members] user sign on to authenticate against LDAP?
>We have LDAP installed and are converting all systems to authenticate
>against it. Can anyone provide documentation or instructions such that
when
>a person telnets into a linux box or ftps into the box, the authentication
>is done by LDAP?
/etc/pam.d/system-auth:
-----------------------
auth required /lib/security/pam_env.so
auth sufficient /lib/security/pam_unix.so likeauth nullok
auth sufficient /lib/security/pam_ldap.so use_first_pass
auth required /lib/security/pam_deny.so
account sufficient /lib/security/pam_unix.so
account sufficient /lib/security/pam_ldap.so
account required /lib/security/pam_deny.so
password sufficient /lib/security/pam_ldap.so
password sufficient /lib/security/pam_unix.so nullok use_authtok md5
password required /lib/security/pam_deny.so
session required /lib/security/pam_limits.so
session required /lib/security/pam_unix.so
session optional /lib/security/pam_ldap.so
On RH7.x this will make LDAP a default auth methind. You may not want
this, you should be able to do the same thing to indivual services.
--
-----------------------------------------------------------
Ximian GNOME, Evolution, LTSP, and RedHat Linux + LVM & XFS
-----------------------------------------------------------
_______________________________________________
Members mailing list
Members@kalamazoolinux.org