I went ahead and modified /etc/security/ldap/ldap.cfg directly
*Note* Any passwords you use, MUST BE HASHED using mksecldap or some
obscure command like that
There is /var/lib/security/method.cfg which defines LDAP, make sure your module
is in there, you can create your own modules if you want to, i.e. AUTH against
KRB and find your user base in LDAP… but unlike nsswitch it does not determine
a priority it just says modules are here.
Lastly /etc/security/user, you need to change two args, SYSTEM (auth if you are
familiar with pam) and registry (account) and point to the method in
methods.cfg
If you are using SSL which you should, you need to create the cert db using
some obscure gui command.
I essentially followed the IPA instructions and omitted the krb5 settings.
http://www.freeipa.org/page/ConfiguringAixClients
Hope this helps.
On May 23, 2013, at 6:54 AM, Dan Lavu <[email protected]> wrote:
> Are you still having issues with this? I just setup my first AIX client
> yesterday.
>
> On Apr 16, 2013, at 2:35 AM, alexandre <[email protected]> wrote:
>
>> Hi Paul,
>>
>> do you know the AIX client configuration to use with 389DS ?
>>
>> Thanks,
>> Alex
>>
>>
>> 2013/4/15 Paul Robert Marino <[email protected]>
>> Its been a long time since I used an AIX box but I don't think AIX uses Pam,
>> so it would be different, that said it should be possible but I'm not sure
>> of the details on how to set it up. Worse come to worse look at some of the
>> old sun one and Netscape docs they would cover AIX clients and should be at
>> least mostly still accurate.
>>
>>
>> -- Sent from my HP Pre3
>>
>> On Apr 15, 2013 10:58 AM, alexandre <[email protected]> wrote:
>>
>> Hello,
>>
>> just to know if somebody try to use an AIX client against 389DS ?
>>
>> I know it's possible with Solaris. It is the same way to use AIX client
>> (nsswitch.conf and pam configuration)?
>>
>> Best regards,
>> Alex
>>
>> --
>> 389 users mailing list
>> [email protected]
>> https://admin.fedoraproject.org/mailman/listinfo/389-users
>>
>> --
>> 389 users mailing list
>> [email protected]
>> https://admin.fedoraproject.org/mailman/listinfo/389-users
>
--
389 users mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/389-users
