On Tue, 5 Sep 2006 at 17:51, Nicolas MASS? wrote:
On Tuesday 05 September 2006 17:35, Andrew D. Fant wrote:
I know that there is an NIS emulation mode for ldap, but is there a more
elegant way to have a local password file, where logins are checked first
against the directory, and if there is no ldap entry for the user, falling
back to the local files?
In /etc/nsswitch.conf, you can have an entry like this :
passwd: ldap files
shadow: ldap files
group: ldap files
I don't know much about this, but given Andrew's constraints and what
the nsswitch.conf man page says I'd think he just wants:
shadow: ldap files
without the other two, since he said that he doesn't want everyone
in the enterprise to have access to the gentoo boxes, and that the
group structure is different.
--David
