[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pam-list
Subject:    Re: =?iso-8859-1?Q?=D7newbie_on_pam=5Fldap?=
From:       Wil Cooley <wcooley () nakedape ! cc>
Date:       2001-02-18 0:18:28
[Download RAW message or body]

Thus spake á»é§:

>  I have successfully set up OpenLDAP on my server( red hat 6.2) And
>  I have my mail server (I use sendmail as my mail server on another
>  computer on red hat 7.0)And I want to set up user authentication. I
>  mean I need sendmail to log in authenticate via ldap. but I really
>  don't have any idea about it. could you tell me how to do it step be
>  step? which computer do I have to install pam_ldap? what I have to
>  do to config pam_ldap and sendmail? And does it have any pre-install
>  before pam_ldap?

You need {pam,nss}_ldap installed on all the systems that will be using
it for authentication & naming service (mapping UID<->username).

First you need to set your OpenLDAP server up through the method described
in the Quickstart document (or otherwise, if you know how).  Then you
need to migrate your existing /etc/passwd into LDAP.  RH's nss_ldap rpm
includes the scripts to do this; you really only need to do /etc/passwd,
/etc/shadow (I forget if there's a separate script), and /etc/group.
Then you need to set up /etc/ldap.conf (which is used by {nss,pam}_ldap,
not OpenLDAP--those are in /etc/openldap on RH), with the LDAP server
and the base DN.

After that, you're on your own for utilities for adding new users to the
LDAP server.  I personally use LDAP Explorer right now.  There's a project
called 'addluser' which is an adduser script which I plan to investigate.

Sendmail also has some of it's own LDAP support, but I've never worked
with it.

Red Hat also has information in its reference guide:
http://www.redhat.com/support/manuals/RHL-6.2-Manual/ref-guide/ch-ldap.html

Wil
-- 
W. Reilly Cooley                         wcooley@nakedape.cc
Naked Ape Consulting                      http://nakedape.cc
LNXS: Linux/GNU for servers, networks, and   http://lnxs.org
people who take care of them.  *Now with integrated crypto!*
irc.openprojects.net                                   #lnxs

"I go on working for the same reason a hen goes on laying eggs."
- H. L. Mencken



_______________________________________________
Pam-list mailing list
Pam-list@redhat.com
https://listman.redhat.com/mailman/listinfo/pam-list

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic