|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: OffTopic - Solaris 9 & openldap
From: Lew E. Lefton (llefton
math.gatech.edu)
Date: Thu Oct 07 2004 - 09:49:17 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
We have almost completed our complete migration from NIS to LDAP+Kerberos.
Diego Remolina, our lead sysadmin on this project, has put up
his detailed notes at https://www.math.gatech.edu/~dijuremo/ldap
These may be a little out of date, but they should be basically correct.
Cheers,
Lew Lefton
-----------------------------------------------------------------------
| Lew Lefton, IT Director | Phone: (404) 385-0052 |
| School of Mathematics | FAX: (404) 894-4409 |
| Georgia Institute of Technology | e-mail: lleftonmath.gatech.edu |
| Atlanta, GA 30332-0160 | http://www.math.gatech.edu/~llefton |
-----------------------------------------------------------------------
On Wed, 6 Oct 2004, Tay, Gary wrote:
> Hi John,
>
> I have done some Centralized LDAP stuff using openldap(w/ Berkeley DB,
> w/ SSL/TLS, or iDS51 as secondary/primary), + + openssl + openssh +
> pam_ldap + nss_ldap, and would like to share the experience. I avoided
> cyrus-sasl and used Simple BIND w/ TLS.
>
> You may find my home page useful, or not:
> http://web.singnet.com.sg/~garyttt/
>
> Rgds
> Gary
>
> -----Original Message-----
> From: J. A. Landamore [mailto:jalmcs.le.ac.uk]
> Sent: Tuesday, October 05, 2004 11:26 PM
> To: focus-sunsecurityfocus.com
> Subject: OffTopic - Solaris 9 & openldap
>
>
> Apologies for this off topic post, but I'm struggling as to where to go
> for
> information.
>
> For various reasons, primarily that the LDAP server needs to access the
> LDAP
> repository, we are running one of our domains with OpenLDAP (the other
> domain
> where we have a dedicated server runs iDS5 with no problems) Whilst the
> Linux
> clients can authenticate against LDAP successfully I have been unable to
> get the
> Solaris 9 clients to do so. If I login with a local account getent and
> ldaplist
> return correct entries, it is just the authentication of users at login
> that
> fails. I've found documents that describe how to do interoperate
> Solaris 9 and
> OpenLDAP using PADL nss-ldap but not with native Solaris nss-ldap. Can
> anyone
> provide pointers as to what I'm missing and how I can use native
> nss-ldap?
>
> Unless you think your reply will interest the whole list please reply
> directly
> to me.
>
> Thanks for any help
>
> John Landamore
>
> School of Mathematics & Computer Science
> University of Leicester
> University Road, LEICESTER, LE1 7RH
> J.Landamoremcs.le.ac.uk
> Phone: +44 (0)116 2523410 Fax: +44 (0)116 2523604
>
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]