Jamie Thompson wrote:
Chris wrote:
OK - I've decided to look into using a debian box as a PDC using a
combination of samba and openldap (this is on sid).
snip
Yeah, I did this as well, though I stick to testing. Works nicely.
Hmm. Not going so well here.
In /etc/nsswitch.conf
passwd:
Have you tested that the authentication for PAM is working correctly?
Try logging in using whatever auth you are using for it and check it can
read the entiries it needs. libnss-ldap and pam_ldap have different
config files. Sounds like nss is working correctly (i.e. its showing
both users), but
Jamie Thompson wrote:
Have you tested that the authentication for PAM is working correctly?
Try logging in using whatever auth you are using for it and check it can
read the entiries it needs. libnss-ldap and pam_ldap have different
Did this. ldapsearch with a bind of
[EMAIL PROTECTED] wrote:
Did this. ldapsearch with a bind of
uid=chris,ou=people,dc=longship,dc=org searching ou=people for uid=chris
shows me (including userPassword - which is configured in slapd only
viewable for owner and admin).
Gah. That should read dc=home,dc=chrissearle,dc=org
OK - I've decided to look into using a debian box as a PDC using a
combination of samba and openldap (this is on sid).
I decided to start by getting users into ldap.
So - slapd is running. The samba schema is available. nsswitch.conf has
ldap for the passwd, group and shadow settings. pam has
Chris wrote:
OK - I've decided to look into using a debian box as a PDC using a
combination of samba and openldap (this is on sid).
snip
Yeah, I did this as well, though I stick to testing. Works nicely.
1) If users and groups are moved into ldap - what about aptitude
installation of
Jamie Thompson wrote:
Nope, the packages only change the /etc files. It's up to you to keep
the ldap in sync. In practice, these rarely change, but still, I'd
prefer if they added users/groups/etc via changeable scripts that could
modify ldap insteadbut, well, that itch doesn't warrant a
7 matches
Mail list logo
