'Re: [pamldap] Authenticating against Active Directory passwords with PAM'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pamldap
Subject:    Re: [pamldap] Authenticating against Active Directory passwords with PAM
From:       JJ Streicher-Bremer <jjstreic () whack ! org>
Date:       2001-08-09 14:26:50
[Download RAW message or body]

Yes, this is what my ldap.conf file looks like.  I'm guessing that it is
the pam_password ad line that does it.


[jj@athena jj]$ cat /etc/ldap.conf
host 172.19.1.3
base dc=rats,dc=com
ldap_version 3
binddn anonymous@rats.com
rootbinddn administrator@rats.com
scope sub
pam_filter objectclass=user
am_login_attribute sAMAccountName
pam_lookup_policy yes
pam_member_attribute member
pam_login_attribute msSFUName
pam_password ad
nss_base_passwd         cn=Users,dc=rats,dc=com?one
nss_base_shadow         cn=Users,dc=rats,dc=com?one
nss_base_group          cn=Users,dc=rats,dc=com?one

Paul Fitzgibbon wrote:
> 
> I have PAM on Red Hat 7.1 working with Active Directory running on Win2k
> Server SP2 however the passwords are read from field 'userPassword' rather
> than the Windows password.
> 
> Is there any way to get PAM to authenticate using the same password as
> windows?
> 
> Paul Fitzgibbon
> 
> *************************************************************
> This email and any files transmitted with it are confidential
> and intended solely for the use of the individual or entity
> to whom they are addressed.  Any views or opinions
> expressed are solely those of the author and do not
> necessarily represent the views of St Helens College.
> 
> If you are not the intended recipient, or the person
> responsible for delivering the email to the intended
> recipient, be advised that you have received the email
> in error and that any unauthorised review, use,
> disclosure, distribution or publication of this email
> is prohibited. St Helens College will not be liable
> for direct, special, indirect or consequential damages
> arising from alterations of the contents of this message
> by a third party or as a result of any virus being passed on.
> 
> If you have received this email in error please contact
> the sender by reply email and destroy and delete
> the message and all copies from your computer.

-- 
------------------------------
And root said rm -rf / ......
	 and there was nothing
------------------------------

*editors note: there were no UNIX 
systems injured in the creation of
this tagline.

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic