[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pamldap
Subject:    [pamldap] Several questions
From:       Alan Sparks <asparks () quris ! com>
Date:       2001-01-26 21:08:50
[Download RAW message or body]

I jus can't get my head around pam_ldap.  Several things I don't
understand...  Solaris 7, incidentally.

1) After a couple of hits, my LDAP server logs show repeated queries
back for old data.  It seems this is from nscd, correct?  Is there a
suggested config for nscd that "does the rigjht thing" and avoids
beating up the directory server?

2) Can someone explain the process for limiting logins per host?  It
looks like each account's entry should have one or more "host"
attributes with the allowed machine name (is this a fully-qualified
name)?  Is this correct?  I cannot get this to work -- person logs in
whether their entry has the machine FQDN or not.

Basically I want to have local accounts (like root) with normal unix
auth, and LDAP auth/account on entries not in /etc/passwd.  I know the
example pam.conf should be close, just can't get there.

Thanks again.
-Alan

-- 
Alan Sparks, Sr. UNIX Administrator	asparks@quris.com
Quris, Inc.				(720) 836-2058

[prev in list] [next in list] [prev in thread] [next in thread]