You can perhaps use some kind of script to transfer /etc/passwd and
/etc/shadow into LDAP and then use PAM to authenticate all your linux
users from LDAP database. Also when you add new users you can add to ldap
and create directories in linux (with a script perhaps).
This way you can get rid of the whole /etc/passwd and /etc/shadow files at
the same time so you dont have to deal with 2 things.
But then you should find a sendmail which is patched to support LDAP,PAM 
etc. and your pop3,imap servers should support PAM or LDAP too also all
your programs like apache etc. should somehow find users from LDAP.
I tried to do this once but then I thought what the hell, too much
work for having an LDAP database. FreeBSD already keeps users in DB so
this wont improve performance at all. That was also when I decided LDAP
sucks little bit =) Although it is easier to reach to a database like LDAP
or MySQL from anywhere you like.

Evren

On Wed, 4 Dec 2002, Simon White wrote:

> 04-Dec-02 at 20:23, jmc_cs ([EMAIL PROTECTED]) wrote :
> > 
> > 
> > Hi Simon,
> > ----- Original Message -----
> > From: "Simon White" <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Sent: Wednesday, December 04, 2002 7:23 PM
> > Subject: Re: Can LDAP be used to authenticate /etc/passwd ?
> > 
> > 
> > > 04-Dec-02 at 19:12, Sarick ([EMAIL PROTECTED]) wrote :
> > > > Hi all,
> > > > Can the LDAP be used to authenticate a user whose username and password
> > is
> > > > stored in /etc/passwd??
> > >
> > > How is the LDAP server going to read the username in /etc/passwd?
> > >
> > > Passwords are not stored in /etc/passwd, just usernames.
> > > Passwords are usually in /etc/shadow, YMMV
> > yes. My question is, can I use LDAP to authenticate the users who having the
> > accounts on Linux , with EAP-MD5 authentication?
> > That is, to read the usernames from /etc/passwd  and passwords from
> > /etc/shadow.
> > How?
> 
> You can't. You can store the hashes that are in shadow in LDAP probably.
> I think, however, that your approach is probably wrong.
> 
> -- 
> |-Simon White, Internet Services Manager, Certified Check Point CCSA.
> |-MTDS  Internet, Security, Anti-Virus, Linux and Hosting Solutions.
> |-MTDS  14, rue du 16 novembre, Agdal, Rabat, Morocco.
> |-MTDS  tel +212.3.767.4861 - fax +212.3.767.4863
> 
> - 
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> 


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to