[prev in list] [next in list] [prev in thread] [next in thread]
List: pamldap
Subject: Re: [pamldap] Pam_ldap and CDE login
From: Howard Chu <hyc () highlandsun ! com>
Date: 2005-04-15 19:57:03
Message-ID: 42601C8F.6050702 () highlandsun ! com
[Download RAW message or body]
Lam, Eric wrote:
> Hi
>
> I have been using pam_ldap on Solaris. It works perfectly with
> tenet/ftp/scp/ssh and console login with command line interface. Now I
> want to enable the CDE login interface to accept the LDAP password too.
> So I put the following to the pam.conf. My account is local on the
> machine. When I logon with local password, it works. But when I logon
> with my LDAP password, it just hangs. The LDAP log see a SSL connection
> from my machine, but it did not do a search or a bind.
> Telnet/ftp/scp/ssh are still working.
>
> login auth requisite pam_authtok_get.so.1
> login auth required pam_dhkeys.so.1
> login auth sufficient pam_unix_auth.so.1
> login auth required pam_ldap.so.1 use_first_pass
> login auth required pam_dial_auth.so.1
>
> dtlogin auth requisite pam_authtok_get.so.1
> dtlogin auth required pam_dhkeys.so.1
> dtlogin auth sufficient pam_unix_auth.so.1
> dtlogin auth required pam_ldap.so.1 use_first_pass
>
> other auth requisite pam_authtok_get.so.1
> other auth required pam_dhkeys.so.1
> other auth sufficient pam_unix_auth.so.1
> other auth required pam_ldap.so.1 use_first_pass
>
>
> Has anyone successfully enabled CDE to use LDAP password ?
Yes. Symas CNS works with CDE. You have to play some games with libldap
here because CDE invokes some libraries that conflict with a number of
libldap routines. (That assumes you're using the OpenLDAP library. I
believe if you use Sun's libldap it will just work.)
--
-- Howard Chu
Chief Architect, Symas Corp. Director, Highland Sun
http://www.symas.com http://highlandsun.com/hyc
Symas: Premier OpenSource Development and Support
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic