someone reminded me that i was missing the posix account information I
needed i LDAP.
I have added the corresponding posix accounts in LDAP I wish to use:
12 uid=bluethundr,ou=summitnjops,ou=staff,dc=summitnjhome,dc=com
ou: summitnjops
ou: staff
cn: Tim
objectClass: top
objectClass:
I have added the corresponding posix accounts in LDAP I wish to use:
Here is a LDIF snippet that works for users authenticated via LDAP:
dn: uid=myuser,ou=People,dc=example,dc=com
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
Hey guys!
Unfortunately I have a new wrinkle. While I certainly got to make my
sudoers work through LDAP (thanks to those who helped) unfortunately
PAM is unhappy at the moment.
So, while sudo is working in ldap, for any of the services that need
to authenticate through pam (i.e. ssh and su)
hmm.. it would seem that grepping the shcema directory for sudoRole or
sudo anything doesn't turn up anything...
[r...@lcent01:/usr/local/etc/openldap]#grep -ri sudoRole
/usr/local/etc/openldap/schema/
[r...@lcent01:/usr/local/etc/openldap]#grep -ri sudo
/usr/local/etc/openldap/schema/
I just recopied openLDAP.schema as sudoers.schema and added it to slapd.conf
[bluethu...@bluethundr-desktop:~/txt/ldif ] $:ldapadd -h ldap -a -W -x
-D cn=Manager,dc=summitnjhome,dc=com -f
/home/bluethundr/txt/sudoers2.ldif
Enter LDAP Password:
adding new entry
On Fri, Oct 08, 2010 at 10:52:54PM -0400, Tim Dunphy wrote:
I just recopied openLDAP.schema as sudoers.schema and added it to slapd.conf
[bluethu...@bluethundr-desktop:~/txt/ldif ] $:ldapadd -h ldap -a -W -x
-D cn=Manager,dc=summitnjhome,dc=com -f
/home/bluethundr/txt/sudoers2.ldif
adding
Hello CentOS
I am having a bit of trouble importing an ldif into openldap, tho the
syntax looks a-ok to me. I am attempting to import my sudoers list
into my ldap configuration and I used an application called sudoers2ldif
to generate the ldif.
I used the following command to import the file:
On Thu, Oct 07, 2010 at 04:38:42PM -0400, Tim Dunphy wrote:
Hello CentOS
I am having a bit of trouble importing an ldif into openldap, tho the
syntax looks a-ok to me. I am attempting to import my sudoers list
into my ldap configuration and I used an application called sudoers2ldif
to
Well, if I'm not mistaken copying this file to my shchema directory
and referencing it in my slapd.conf file should have taken care of
this objectClass:
cp /usr/local/share/doc/sudo/schema.OpenLDAP
/usr/local/etc/openldap/schema/openldap.schema
And, as mentioned, I made sure to include this in
9 matches
Mail list logo