On Sat, 2008-03-08 at 16:57 +0000, Ian Kent wrote: > > On Sat, 2008-03-08 at 15:33 +0000, Colin Simpson wrote: > > On Sat, 2008-03-08 at 03:27 +0000, Ian Kent wrote: > > > > > > > > > > Did I see someone saying that hardly anyone was using this > > > > functionality? We thought we'd test this functionality and try > and > > > move > > > > towards getting rid of anonymous binds from our LDAP servers. It > > > seems > > > > the right thing to do. > > > > > > > > We were using a setup like this: > > > > > > > > <autofs_ldap_sasl_conf > > > > usetls="yes" > > > > tlsrequired="yes" > > > > authrequired="yes" > > > > authtype="LOGIN" > > > > /> > > > > > > How does this get a user and secret? > > > > > Does it not come from bind info in /etc/ldap.conf ? > > That config file belongs to nss_ldap, and has nothing to do with > openldap or autofs. > > Ian
I also had a binddn and bindpw in /etc/openldap/ldap.conf. Thanks Colin -- Colin Simpson Manager of Information Technology Europe ION [direct] +44 131 200 4788 [office] +44 131 557 5595 www.iongeo.com This email and any files transmitted with it are confidential and are intended solely for the use of the individual or entity to whom they are addressed. If you are not the original recipient or the person responsible for delivering the email to the intended recipient, be advised that you have received this email in error, and that any use, dissemination, forwarding, printing, or copying of this email is strictly prohibited. If you received this email in error, please immediately notify the sender and delete the original. _______________________________________________ autofs mailing list [email protected] http://linux.kernel.org/mailman/listinfo/autofs
